{"id":12757,"name":"github.com/ulikunitz/xz","ecosystem":"go","repository_url":"https://github.com/ulikunitz/xz","issues_count":1618,"created_at":"2025-06-06T23:19:57.378Z","updated_at":"2025-06-06T23:19:57.378Z","purl":"pkg:golang/github.com/ulikunitz/xz","metadata":{"id":3493619,"name":"github.com/ulikunitz/xz","ecosystem":"go","description":"Package xz supports the compression and decompression of xz files. It\nsupports version 1.0.4 of the specification without the non-LZMA2\nfilters. See http://tukaani.org/xz/xz-file-format-1.0.4.txt","homepage":"https://github.com/ulikunitz/xz","licenses":"BSD-3-Clause","normalized_licenses":["BSD-3-Clause"],"repository_url":"https://github.com/ulikunitz/xz","keywords_array":[],"namespace":"github.com/ulikunitz","versions_count":18,"first_release_published_at":"2015-09-03T05:27:04.000Z","latest_release_published_at":"2024-04-03T18:50:35.000Z","latest_release_number":"v0.5.12","last_synced_at":"2025-06-07T09:01:53.425Z","created_at":"2022-04-10T19:18:15.686Z","updated_at":"2025-06-07T09:01:53.425Z","registry_url":"https://pkg.go.dev/github.com/ulikunitz/xz","install_command":"go get github.com/ulikunitz/xz","documentation_url":"https://pkg.go.dev/github.com/ulikunitz/xz#section-documentation","metadata":{},"repo_metadata":{"uuid":"23000858","full_name":"ulikunitz/xz","owner":"ulikunitz","description":"Pure golang package for reading and writing xz-compressed files","archived":false,"fork":false,"pushed_at":"2023-02-10T07:48:42.000Z","size":10005,"stargazers_count":402,"open_issues_count":15,"forks_count":36,"subscribers_count":15,"default_branch":"master","last_synced_at":"2023-02-25T17:26:10.947Z","etag":null,"topics":["compression","decompression","go","xz"],"latest_commit_sha":null,"homepage":"","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"logo_url":null,"metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null}},"created_at":"2014-08-15T19:41:21.000Z","updated_at":"2023-02-25T05:53:02.000Z","dependencies_parsed_at":"2023-01-14T09:15:18.673Z","dependency_job_id":null,"html_url":"https://github.com/ulikunitz/xz","commit_stats":null,"repository_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ulikunitz%2Fxz","tags_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ulikunitz%2Fxz/tags","manifests_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/ulikunitz%2Fxz/manifests","owner_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/ulikunitz","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":108921946,"host_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"http://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names"}},"repo_metadata_updated_at":"2023-03-21T18:38:14.621Z","dependent_packages_count":6770,"downloads":null,"downloads_period":null,"dependent_repos_count":16976,"rankings":{"downloads":null,"dependent_repos_count":0.05654066570668571,"dependent_packages_count":0.03164202392759475,"stargazers_count":2.7913912572771338,"forks_count":3.888535157343709,"docker_downloads_count":0.08745647924905697,"average":1.3711131167008361},"purl":"pkg:golang/github.com/ulikunitz/xz","advisories":[{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTI1eG0taHI1OS03YzI3","url":"https://github.com/advisories/GHSA-25xm-hr59-7c27","title":"github.com/ulikunitz/xz fixes readUvarint Denial of Service (DoS)","description":"### Impact\n\nxz is a compression and decompression library focusing on the xz format completely written in Go. The function readUvarint used to read the xz container format may not terminate a loop provide malicous input.\n\n### Patches\n\nThe problem has been fixed in release v0.5.8.\n\n### Workarounds\n\nLimit the size of the compressed file input to a reasonable size for your use case.\n\n### References\n\nThe standard library had recently the same issue and got the [CVE-2020-16845](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-16845) allocated.\n\n### For more information\nIf you have any questions or comments about this advisory:\n* Open an issue in [xz](https://github.com/ulikunitz/xz/issues).","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2021-05-25T18:39:37.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://github.com/ulikunitz/xz/security/advisories/GHSA-25xm-hr59-7c27","https://nvd.nist.gov/vuln/detail/CVE-2021-29482","https://github.com/ulikunitz/xz/commit/69c6093c7b2397b923acf82cb378f55ab2652b9b","https://github.com/ulikunitz/xz/issues/35","https://pkg.go.dev/vuln/GO-2020-0016","https://github.com/advisories/GHSA-25xm-hr59-7c27"],"source_kind":"github","identifiers":["GHSA-25xm-hr59-7c27","CVE-2021-29482"],"repository_url":"https://github.com/ulikunitz/xz","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"0.5.8","vulnerable_version_range":"\u003c 0.5.8"}],"ecosystem":"go","package_name":"github.com/ulikunitz/xz"}],"created_at":"2022-12-21T16:13:00.870Z","updated_at":"2025-05-13T01:11:27.135Z","epss_percentage":0.00535,"epss_percentile":0.66192},{"uuid":"MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLXE2Z3EtOTk3dy1mNTVn","url":"https://github.com/advisories/GHSA-q6gq-997w-f55g","title":"Infinite loop in xz","description":"Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint and ReadVarint in encoding/binary via invalid inputs.","origin":"UNSPECIFIED","severity":"HIGH","published_at":"2021-12-16T19:16:40.000Z","withdrawn_at":null,"classification":"GENERAL","cvss_score":0.0,"cvss_vector":null,"references":["https://nvd.nist.gov/vuln/detail/CVE-2020-16845","https://github.com/ulikunitz/xz/issues/35","https://github.com/ulikunitz/xz/commit/69c6093c7b2397b923acf82cb378f55ab2652b9b","https://groups.google.com/forum/#!topic/golang-announce/NyPIaucMgXo","https://groups.google.com/forum/#!topic/golang-announce/_ulYYcIWg3Q","https://lists.debian.org/debian-lts-announce/2020/11/msg00037.html","https://lists.debian.org/debian-lts-announce/2020/11/msg00038.html","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6RCFJTMKHY5ICGEM5BUFUEDDGSPJ25XU/","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KWRBAH4UZJO3RROQ72SYCUPFCJFA22FO/","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TACQFZDPA7AUR6TRZBCX2RGRFSDYLI7O/","https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WV2VWKFTH4EJGZBZALVUJQJOAQB5MDQ4/","https://security.netapp.com/advisory/ntap-20200924-0002/","https://www.debian.org/security/2021/dsa-4848","https://www.oracle.com/security-alerts/cpuApr2021.html","http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00021.html","http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00028.html","http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00029.html","http://lists.opensuse.org/opensuse-security-announce/2020-09/msg00030.html","https://github.com/advisories/GHSA-q6gq-997w-f55g"],"source_kind":"github","identifiers":["GHSA-q6gq-997w-f55g","CVE-2020-16845"],"repository_url":"https://github.com/ulikunitz/xz","blast_radius":0.0,"packages":[{"versions":[{"first_patched_version":"0.5.8","vulnerable_version_range":"\u003c 0.5.8"}],"ecosystem":"go","package_name":"github.com/ulikunitz/xz"}],"created_at":"2022-12-21T16:12:58.571Z","updated_at":"2023-02-01T05:05:48.000Z","epss_percentage":0.00084,"epss_percentile":0.25691}],"docker_usage_url":"https://docker.ecosyste.ms/usage/go/github.com/ulikunitz/xz","docker_dependents_count":4006,"docker_downloads_count":4324704164,"usage_url":"https://repos.ecosyste.ms/usage/go/github.com/ulikunitz/xz","dependent_repositories_url":"https://repos.ecosyste.ms/api/v1/usage/go/github.com/ulikunitz/xz/dependencies","status":null,"funding_links":[],"critical":true,"versions_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fulikunitz%2Fxz/versions","version_numbers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fulikunitz%2Fxz/version_numbers","dependent_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fulikunitz%2Fxz/dependent_packages","related_packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages/github.com%2Fulikunitz%2Fxz/related_packages","maintainers":[],"registry":{"name":"proxy.golang.org","url":"https://proxy.golang.org","ecosystem":"go","default":true,"packages_count":1886302,"maintainers_count":0,"namespaces_count":723964,"keywords_count":98339,"github":"golang","metadata":{"funded_packages_count":39348},"icon_url":"https://github.com/golang.png","created_at":"2022-04-04T15:19:22.939Z","updated_at":"2025-06-07T05:37:05.003Z","packages_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/packages","maintainers_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/maintainers","namespaces_url":"https://packages.ecosyste.ms/api/v1/registries/proxy.golang.org/namespaces"}},"unique_repositories_count":1349,"unique_repositories_count_past_30_days":5,"recent_issues":[{"uuid":"4556209058","node_id":"PR_kwDOSX71h87hBsu4","number":1,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-31T01:31:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-31T01:15:08.000Z","updated_at":"2026-05-31T01:31:58.000Z","time_to_close":1001,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":2,"packages":[{"name":"github.com/nwaples/rardecode/v2","old_version":"2.1.0","new_version":"2.2.0","repository_url":"https://github.com/nwaples/rardecode"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"[//]: # (dependabot-start)\n⚠️  **Dependabot is rebasing this PR** ⚠️ \n\nRebasing might not happen immediately, so don't worry if this takes some time.\n\nNote: if you make any changes to this PR yourself, they will take precedence over the rebase.\n\n---\n\n[//]: # (dependabot-end)\n\nBumps the go_modules group with 2 updates in the / directory: [github.com/nwaples/rardecode/v2](https://github.com/nwaples/rardecode) and [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\n\nUpdates `github.com/nwaples/rardecode/v2` from 2.1.0 to 2.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/52fb4e825c936636f251f7e7deded39ab11df9a9\"\u003e\u003ccode\u003e52fb4e8\u003c/code\u003e\u003c/a\u003e allow max dictionary size to be set, with default now at 4GB\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/9f4b0d19121de2811fe5c85d6c8ab7dfd25c02d1\"\u003e\u003ccode\u003e9f4b0d1\u003c/code\u003e\u003c/a\u003e dont let the dictionary be larger than the unpacked file size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/153fdf59e044b8dee9a24753f0c894f68c1a7bc1\"\u003e\u003ccode\u003e153fdf5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/nwaples/rardecode/issues/47\"\u003e#47\u003c/a\u003e from nwaples/bytereader\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/3f140e58be03c43a27b6d81cbdd77a7341bea179\"\u003e\u003ccode\u003e3f140e5\u003c/code\u003e\u003c/a\u003e document RarFS methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/b4fc922c0a09e60b630d88b7e08759053faf6678\"\u003e\u003ccode\u003eb4fc922\u003c/code\u003e\u003c/a\u003e change os.FileMode to fs.FileMode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/edb01e79aea4a993ff2cee32f8b389c3025a4dfd\"\u003e\u003ccode\u003eedb01e7\u003c/code\u003e\u003c/a\u003e add Seek support for uncompressed files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/710bda24e364fe7c45462ec4b93304c224d4b565\"\u003e\u003ccode\u003e710bda2\u003c/code\u003e\u003c/a\u003e add initial Seek support for limitedReader\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/9deacfbfcaec2ea59b61dac917ae2d6aaa0f2e90\"\u003e\u003ccode\u003e9deacfb\u003c/code\u003e\u003c/a\u003e save offset in packetFileReader\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/4f0a7507425f4c54c15195b1cb81e70745812e73\"\u003e\u003ccode\u003e4f0a750\u003c/code\u003e\u003c/a\u003e change limitedReader to save offset internally\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/1c32663b05013841b98d51c2089a49b10a026028\"\u003e\u003ccode\u003e1c32663\u003c/code\u003e\u003c/a\u003e split volume into readerVolume and fileVolume\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nwaples/rardecode/compare/v2.1.0...v2.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mayankjain0141/nixis/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/mayankjain0141/nixis/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mayankjain0141%2Fnixis/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4473920402","node_id":"PR_kwDOLMiOMM7c5GPp","number":79,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 12 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T22:43:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-19T02:22:28.000Z","updated_at":"2026-05-25T22:43:29.000Z","time_to_close":591659,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":12,"packages":[{"name":"github.com/docker/docker","old_version":"27.5.1+incompatible","new_version":"28.5.2+incompatible","repository_url":"https://github.com/docker/docker"},{"name":"github.com/gin-gonic/gin","old_version":"1.10.0","new_version":"1.12.0","repository_url":"https://github.com/gin-gonic/gin"},{"name":"github.com/klauspost/compress","old_version":"1.18.0","new_version":"1.18.6","repository_url":"https://github.com/klauspost/compress"},{"name":"github.com/samber/lo","old_version":"1.49.1","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/spf13/afero","old_version":"1.14.0","new_version":"1.15.0","repository_url":"https://github.com/spf13/afero"},{"name":"github.com/spf13/cast","old_version":"1.7.1","new_version":"1.10.0","repository_url":"https://github.com/spf13/cast"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.15","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/urfave/cli/v3","old_version":"3.0.0-beta1","new_version":"3.9.0","repository_url":"https://github.com/urfave/cli"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/docker/docker](https://github.com/docker/docker) | `27.5.1+incompatible` | `28.5.2+incompatible` |\n| [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) | `1.10.0` | `1.12.0` |\n| [github.com/klauspost/compress](https://github.com/klauspost/compress) | `1.18.0` | `1.18.6` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.49.1` | `1.53.0` |\n| [github.com/spf13/afero](https://github.com/spf13/afero) | `1.14.0` | `1.15.0` |\n| [github.com/spf13/cast](https://github.com/spf13/cast) | `1.7.1` | `1.10.0` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.15` |\n| [github.com/urfave/cli/v3](https://github.com/urfave/cli) | `3.0.0-beta1` | `3.9.0` |\n\n\nUpdates `github.com/docker/docker` from 27.5.1+incompatible to 28.5.2+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/docker/releases\"\u003egithub.com/docker/docker's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev28.5.2\u003c/h2\u003e\n\u003ch2\u003e28.5.2\u003c/h2\u003e\n\u003cp\u003eFor a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.2\"\u003edocker/cli, 28.5.2 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.2\"\u003emoby/moby, 28.5.2 milestone\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!CAUTION]\nThis release contains fixes for three high-severity security vulnerabilities in runc:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eAll three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003ePackaging updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate runc to \u003ca href=\"https://github.com/opencontainers/runc/releases/tag/v1.3.3\"\u003ev1.3.3\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51394\"\u003emoby/moby#51394\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes and enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edockerd-rootless.sh: if slirp4netns is not installed, try using pasta (passt). \u003ca href=\"https://redirect.github.com/moby/moby/pull/51162\"\u003emoby/moby#51162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Go runtime to \u003ca href=\"https://go.dev/doc/devel/release#go1.24.9\"\u003e1.24.9\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51387\"\u003emoby/moby#51387\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/docker/cli/pull/6613\"\u003edocker/cli#6613\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecations\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGo-SDK: cli/command/image/build: deprecate \u003ccode\u003eDefaultDockerfileName\u003c/code\u003e, \u003ccode\u003eDetectArchiveReader\u003c/code\u003e, \u003ccode\u003eWriteTempDockerfile\u003c/code\u003e, \u003ccode\u003eResolveAndValidateContextPath\u003c/code\u003e. These utilities were only used internally and will be removed in the next release. \u003ca href=\"https://redirect.github.com/docker/cli/pull/6610\"\u003edocker/cli#6610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGo-SDK: cli/command/image/build: deprecate IsArchive utility. \u003ca href=\"https://redirect.github.com/docker/cli/pull/6560\"\u003edocker/cli#6560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGo-SDK: opts: deprecate \u003ccode\u003eValidateMACAddress\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/docker/cli/pull/6560\"\u003edocker/cli#6560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGo-SDK: opts: deprecate ListOpts.Delete(). \u003ca href=\"https://redirect.github.com/docker/cli/pull/6560\"\u003edocker/cli#6560\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev28.5.1\u003c/h2\u003e\n\u003ch2\u003e28.5.1\u003c/h2\u003e\n\u003cp\u003eFor a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.1\"\u003edocker/cli, 28.5.1 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.1\"\u003emoby/moby, 28.5.1 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecated and removed features, see \u003ca href=\"https://github.com/docker/cli/blob/v28.5.1/docs/deprecated.md\"\u003eDeprecated Features\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eChanges to the Engine API, see \u003ca href=\"https://github.com/moby/moby/blob/v28.5.1/docs/api/version-history.md\"\u003eAPI version history\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes and enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate BuildKit to v0.25.1. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51137\"\u003emoby/moby#51137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Go runtime to \u003ca href=\"https://go.dev/doc/devel/release#go1.24.8\"\u003e1.24.8\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51133\"\u003emoby/moby#51133\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/docker/cli/pull/6541\"\u003edocker/cli#6541\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecations\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapi/types/image: InspectResponse: deprecate \u003ccode\u003eParent\u003c/code\u003e and \u003ccode\u003eDockerVersion\u003c/code\u003e fields. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51105\"\u003emoby/moby#51105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eapi/types/plugin: deprecate \u003ccode\u003eConfig.DockerVersion\u003c/code\u003e field. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51110\"\u003emoby/moby#51110\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/89c5e8fd66634b6128fc4c0e6f1236e2540e46e0\"\u003e\u003ccode\u003e89c5e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51396\"\u003e#51396\u003c/a\u003e from thaJeztah/28.x_backport_api_docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/9b93878308cae892878febfa52ff0b5799bea7b0\"\u003e\u003ccode\u003e9b93878\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51395\"\u003e#51395\u003c/a\u003e from thaJeztah/28.x_backport_rootless_reject\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/6178456763b64c360983c5a5ea35d4258171e91c\"\u003e\u003ccode\u003e6178456\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51398\"\u003e#51398\u003c/a\u003e from vvoland/51397-28.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/0cae4e5c8f76756eaba81dbd23ef57fccac3033f\"\u003e\u003ccode\u003e0cae4e5\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/buildkit v0.25.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/33cc06f6169ddba8f00c50a8c12494b54b1cb2fc\"\u003e\u003ccode\u003e33cc06f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51394\"\u003e#51394\u003c/a\u003e from vvoland/51393-28.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/d525277410726d5f99e46b8b2ba60ea9b7011afa\"\u003e\u003ccode\u003ed525277\u003c/code\u003e\u003c/a\u003e api/docs: remove BuildCache.Parent field for API v1.42 and up\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/2fbc51b4f895c75749896bf4655f7888a300bb9d\"\u003e\u003ccode\u003e2fbc51b\u003c/code\u003e\u003c/a\u003e dockerd-rootless.sh: reject DOCKERD_ROOTLESS_ROOTLESSKIT_NET=host\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/bd98008c078ab4a4d99f0c1577e641dbfe191cfd\"\u003e\u003ccode\u003ebd98008\u003c/code\u003e\u003c/a\u003e integration-cli: Adjust nofile limits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/19675151a3d3b947501fcad1dcacbd00e6f4b23e\"\u003e\u003ccode\u003e1967515\u003c/code\u003e\u003c/a\u003e Dockerfile: update runc binary to v1.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/44896604b8f50d9ba38199c25ed2c7d2d40318a7\"\u003e\u003ccode\u003e4489660\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51387\"\u003e#51387\u003c/a\u003e from thaJeztah/28.x_bump_go\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/docker/compare/v27.5.1...v28.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gin-gonic/gin` from 1.10.0 to 1.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/releases\"\u003egithub.com/gin-gonic/gin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e192ac89eefc1c30f7c97ae48a9ffb1c6f1c8c8bc: feat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4203\"\u003e#4203\u003c/a\u003e) (\u003ca href=\"https://github.com/takanuva15\"\u003e\u003ccode\u003e@​takanuva15\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e53410d2e07054369e0960fbe2eed97e1b9966f12: feat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4502\"\u003e#4502\u003c/a\u003e) (\u003ca href=\"https://github.com/raju-mechatronics\"\u003e\u003ccode\u003e@​raju-mechatronics\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eacc55e049e33b401e810dbd8c0d6dcb6b3ba2b05: feat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4423\"\u003e#4423\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e38e765119241d990705169bedb5002a29ae0cbd1: feat(context): implemented Delete method (\u003ca href=\"https://github.com/Spyder01\"\u003e\u003ccode\u003e@​Spyder01\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e771dcc6476d7bc6abb9ec0235ecefa4d38fe6fb0: feat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4420\"\u003e#4420\u003c/a\u003e) (\u003ca href=\"https://github.com/ldesauw\"\u003e\u003ccode\u003e@​ldesauw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4dec17afdff48e8018c83618fbbe69fceeb2b41d: feat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4146\"\u003e#4146\u003c/a\u003e) (\u003ca href=\"https://github.com/wsyqn6\"\u003e\u003ccode\u003e@​wsyqn6\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed7776de7d444935ea4385999711bd6331a98fecb: feat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4145\"\u003e#4145\u003c/a\u003e) (\u003ca href=\"https://github.com/laurentcau\"\u003e\u003ccode\u003e@​laurentcau\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb917b14ff9d189f16a7492be79d123a47806ee19: fix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/2169\"\u003e#2169\u003c/a\u003e) (\u003ca href=\"https://github.com/guonaihong\"\u003e\u003ccode\u003e@​guonaihong\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d1092b3b48addf6f9cd00fe274ec3bd14650eb: fix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4380\"\u003e#4380\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9914178584e42458ff7d23891463a880f58c9d86: fix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4472\"\u003e#4472\u003c/a\u003e) (\u003ca href=\"https://github.com/Nurysso\"\u003e\u003ccode\u003e@​Nurysso\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e2a794cd0b0faa7d829291375b27a3467ea972b0d: fix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4403\"\u003e#4403\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d5a28ed6d3849da820195b6774d212bcc038a9: fix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4422\"\u003e#4422\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5fad976b372e381312f8de69f0969f1284d229d3: fix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4415\"\u003e#4415\u003c/a\u003e) (\u003ca href=\"https://github.com/pawannn\"\u003e\u003ccode\u003e@​pawannn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e63dd3e60cab89c27fb66bce1423bd268d52abad1: fix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4336\"\u003e#4336\u003c/a\u003e) (\u003ca href=\"https://github.com/MondayCha\"\u003e\u003ccode\u003e@​MondayCha\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a: fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e) (\u003ca href=\"https://github.com/dengaleev\"\u003e\u003ccode\u003e@​dengaleev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e234a6d4c00cb77af9852aca0b8289745d5529b4b: fix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4373\"\u003e#4373\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e472d086af2acd924cb4b9d7be0525f7d790f69bc: fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8e07d37c63e5536eb25f4af4c91eabeee4011fba: fix: Correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4511\"\u003e#4511\u003c/a\u003e) (\u003ca href=\"https://github.com/mahanadh\"\u003e\u003ccode\u003e@​mahanadh\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eba093d19477b896ac89a7fc3246af23d290b8e26: chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e) (\u003ca href=\"https://github.com/BobDu\"\u003e\u003ccode\u003e@​BobDu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb2b489dbf4826c2c630717a77fd5e42774625410: chore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/3359\"\u003e#3359\u003c/a\u003e) (\u003ca href=\"https://github.com/WeidiDeng\"\u003e\u003ccode\u003e@​WeidiDeng\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eecb3f7b5e2f3915bf1db240ed5eee572f8dbea36: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4449\"\u003e#4449\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaf6e8b70b8261bb0c99ad094fe552ab92991620a: chore(deps): upgrade quic-go to v0.57.1 (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb309081bc5c137b2aa15701ef53f7f19788da25: chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e) (\u003ca href=\"https://github.com/USA-RedDragon\"\u003e\u003ccode\u003e@​USA-RedDragon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e26c3a628655cad2388380cb8102d6ce7d4875f3b: chore(response): prevent Flush() panic when \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4479\"\u003e#4479\u003c/a\u003e) (\u003ca href=\"https://github.com/Twacqwq\"\u003e\u003ccode\u003e@​Twacqwq\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5dd833f1f26de0eb30eae47b17e05ced2482dc41: chore: bump minimum Go version to 1.24 and update workflows (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4388\"\u003e#4388\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39858a0859c914bd26948fa950477e11bd8d3823: refactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4352\"\u003e#4352\u003c/a\u003e) (\u003ca href=\"https://github.com/russcoss\"\u003e\u003ccode\u003e@​russcoss\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0048f645ee945c4db30593afdea10123e2c30a6: refactor(context): omit the return value names (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4395\"\u003e#4395\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e915e4c90d28ec4cffc6eb146e208ab5a65eac772: refactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4481\"\u003e#4481\u003c/a\u003e) (\u003ca href=\"https://github.com/pauloappbr\"\u003e\u003ccode\u003e@​pauloappbr\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e414de60574449457f3192a7a1d5528940db2836d: refactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4333\"\u003e#4333\u003c/a\u003e) (\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59e9d4a794f12c4f9a6c7bed441b9644e5f6d99b: refactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4314\"\u003e#4314\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ab698dc5110af1977d57226e4995c57dd34c233: refactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4142\"\u003e#4142\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed1a15347b1e45a8ee816193d3578a93bfd73b70f: refactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4467\"\u003e#4467\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee3118cc378d263454098924ebbde7e8d1dd2e904: refactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4392\"\u003e#4392\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e488f8c3ffa579a8d19beb2bae95ff8ef36b3d53f: refactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4529\"\u003e#4529\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9968c4bf9d5a99edc3eee2c068a4c9160ece8915: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4389\"\u003e#4389\u003c/a\u003e) (\u003ca href=\"https://github.com/reddaisyy\"\u003e\u003ccode\u003e@​reddaisyy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea85ef5ce4d0cda8834c59c855068ed48b51192d1: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4432\"\u003e#4432\u003c/a\u003e) (\u003ca href=\"https://github.com/efcking\"\u003e\u003ccode\u003e@​efcking\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e61b67de522a189b568aced4c5c16917c558e3387: ci(bot): increase frequency and group updates for dependencies (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4367\"\u003e#4367\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efb27ef26c2fdfe25344b4c039d8a53551f9e912c: ci(lint): refactor test assertions and linter configuration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4436\"\u003e#4436\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e93ff771e6dbf10e432864b30f3719ac5c84a4d4a: ci(sec): improve type safety and server organization in HTTP middleware (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4437\"\u003e#4437\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee88fc8927a52b74f55bec0351604a56ac0aa1c51: ci(sec): schedule Trivy security scans to run daily at midnight UTC (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4439\"\u003e#4439\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e5ff3ace496a31b138b0820136a146bfb5de0ef: ci: replace vulnerability scanning workflow with Trivy integration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4421\"\u003e#4421\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e00900fb3e1ea9dde33985a0e4f6afec793d5e786: ci: update CI workflows and standardize Trivy config quotes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4531\"\u003e#4531\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eae3f524974fc4f55d18c9e7fae4614503c015226: ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md\"\u003egithub.com/gin-gonic/gin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGin v1.12.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4145\"\u003e#4145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4502\"\u003e#4502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4203\"\u003e#4203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4420\"\u003e#4420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4423\"\u003e#4423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): implemented Delete method (\u003ca href=\"https://github.com/gin-gonic/gin/commit/38e7651\"\u003e#38e7651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4146\"\u003e#4146\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eperf(tree): reduce allocations in findCaseInsensitivePath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4417\"\u003e#4417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(recovery): optimize line reading in stack function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4466\"\u003e#4466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(path): replace regex with custom functions in redirectTrailingSlash (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4414\"\u003e#4414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(tree): optimize path parsing using strings.Count (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4246\"\u003e#4246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/3359\"\u003e#3359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(response): prevent Flush() panic when the underlying ResponseWriter does not implement \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4479\"\u003e#4479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4142\"\u003e#4142\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4481\"\u003e#4481\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4467\"\u003e#4467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4352\"\u003e#4352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4333\"\u003e#4333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4314\"\u003e#4314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4529\"\u003e#4529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4392\"\u003e#4392\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4472\"\u003e#4472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/2169\"\u003e#2169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4336\"\u003e#4336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4415\"\u003e#4415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4422\"\u003e#4422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4373\"\u003e#4373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4380\"\u003e#4380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4403\"\u003e#4403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4511\"\u003e#4511\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates / CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eGin v1.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/73726dc606796a025971fe451f0aa6f1b9b847f6\"\u003e\u003ccode\u003e73726dc\u003c/code\u003e\u003c/a\u003e docs: update documentation to reflect Go version changes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4552\"\u003e#4552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/e292e5caa777bce70b66fe08c94cbe9cef3e2ec9\"\u003e\u003ccode\u003ee292e5c\u003c/code\u003e\u003c/a\u003e docs: document and finalize Gin v1.12.0 release (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4551\"\u003e#4551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ae3f524974fc4f55d18c9e7fae4614503c015226\"\u003e\u003ccode\u003eae3f524\u003c/code\u003e\u003c/a\u003e ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/38534e2bf98a06e1f62d6b24384e90b5f78699bf\"\u003e\u003ccode\u003e38534e2\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4548\"\u003e#4548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/472d086af2acd924cb4b9d7be0525f7d790f69bc\"\u003e\u003ccode\u003e472d086\u003c/code\u003e\u003c/a\u003e fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/fb2583442c4d9bccb75e6d26f1aa6e7c01950db6\"\u003e\u003ccode\u003efb25834\u003c/code\u003e\u003c/a\u003e test(context): use http.StatusContinue constant instead of magic number 100 (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/6f1d5fe3cdb171a08928c3c9dd3fbcfc9ee1b521\"\u003e\u003ccode\u003e6f1d5fe\u003c/code\u003e\u003c/a\u003e test(render): add comprehensive error handling tests (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4541\"\u003e#4541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a\"\u003e\u003ccode\u003e5c00df8\u003c/code\u003e\u003c/a\u003e fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/db309081bc5c137b2aa15701ef53f7f19788da25\"\u003e\u003ccode\u003edb30908\u003c/code\u003e\u003c/a\u003e chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ba093d19477b896ac89a7fc3246af23d290b8e26\"\u003e\u003ccode\u003eba093d1\u003c/code\u003e\u003c/a\u003e chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gin-gonic/gin/compare/v1.10.0...v1.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/klauspost/compress` from 1.18.0 to 1.18.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/klauspost/compress/releases\"\u003egithub.com/klauspost/compress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.18.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003es2: Fix amd64 stack frame corruption by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1145\"\u003eklauspost/compress#1145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egzhttp: Canonicalize ETag header by \u003ca href=\"https://github.com/justinmayhew\"\u003e\u003ccode\u003e@​justinmayhew\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1139\"\u003eklauspost/compress#1139\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: pool hash tables in Go encode paths to reduce allocations by \u003ca href=\"https://github.com/huynhanx03\"\u003e\u003ccode\u003e@​huynhanx03\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1143\"\u003eklauspost/compress#1143\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/justinmayhew\"\u003e\u003ccode\u003e@​justinmayhew\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1139\"\u003eklauspost/compress#1139\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huynhanx03\"\u003e\u003ccode\u003e@​huynhanx03\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1143\"\u003eklauspost/compress#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1144\"\u003eklauspost/compress#1144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.5...v1.18.6\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.5...v1.18.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ezstd: Fix crash when changing encoder dictionary with same ID by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1135\"\u003eklauspost/compress#1135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ezstd: Default to full zero frames by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1134\"\u003eklauspost/compress#1134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eflate: Clean up histogram order by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1133\"\u003eklauspost/compress#1133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.4...v1.18.5\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.4...v1.18.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003egzhttp: Add zstandard to server handler wrapper by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1121\"\u003eklauspost/compress#1121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ezstd: Add ResetWithOptions to encoder/decoder by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1122\"\u003eklauspost/compress#1122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egzhttp: preserve qvalue when extra parameters follow in Accept-Encoding by \u003ca href=\"https://github.com/analytically\"\u003e\u003ccode\u003e@​analytically\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1116\"\u003eklauspost/compress#1116\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/analytically\"\u003e\u003ccode\u003e@​analytically\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1116\"\u003eklauspost/compress#1116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethaizone\"\u003e\u003ccode\u003e@​ethaizone\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1124\"\u003eklauspost/compress#1124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zwass\"\u003e\u003ccode\u003e@​zwass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1125\"\u003eklauspost/compress#1125\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.2...v1.18.4\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.2...v1.18.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.3\u003c/h2\u003e\n\u003cp\u003eDownstream CVE-2025-61728\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/golang/go/issues/77102\"\u003egolang/go#77102\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.2...v1.18.3\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.2...v1.18.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eflate: Fix invalid encoding on level 9 with single value input by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1115\"\u003eklauspost/compress#1115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eflate: reduce stateless allocations by \u003ca href=\"https://github.com/RXamzin\"\u003e\u003ccode\u003e@​RXamzin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1106\"\u003eklauspost/compress#1106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.30.5 to 4.31.2 in the github-actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1111\"\u003eklauspost/compress#1111\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ccode\u003ev1.18.1\u003c/code\u003e is marked \u0026quot;retracted\u0026quot; due to invalid flate/zip/gzip encoding.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/ac2f5e87a3089bd58c974ca53cef71c7aa8bf877\"\u003e\u003ccode\u003eac2f5e8\u003c/code\u003e\u003c/a\u003e docs: use unix line-endings for markdown files (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1144\"\u003e#1144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/620d7b5cfbf89fbfdf69884f8a561a2981c25b11\"\u003e\u003ccode\u003e620d7b5\u003c/code\u003e\u003c/a\u003e s2: Fix amd64 stack frame corruption (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1145\"\u003e#1145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/1b63f2fece784da6334068c671e3f94366bf9d68\"\u003e\u003ccode\u003e1b63f2f\u003c/code\u003e\u003c/a\u003e build(deps): bump the github-actions group with 2 updates (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1141\"\u003e#1141\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/3d86b893733380c370eba876f5beaaf63aeeea94\"\u003e\u003ccode\u003e3d86b89\u003c/code\u003e\u003c/a\u003e s2: pool hash tables in Go encode paths to reduce allocations (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1143\"\u003e#1143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/15967def6890f5494829394274686436976c4936\"\u003e\u003ccode\u003e15967de\u003c/code\u003e\u003c/a\u003e gzhttp: Canonicalize ETag header (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1139\"\u003e#1139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/c5e0077f50a3268a27b02816adc48ebfb535c65e\"\u003e\u003ccode\u003ec5e0077\u003c/code\u003e\u003c/a\u003e zstd: Fix encoder changing dictionary with same ID (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1135\"\u003e#1135\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/fd3f23e2d1d0fca18f38ee2dfedb73d0ca5b02e5\"\u003e\u003ccode\u003efd3f23e\u003c/code\u003e\u003c/a\u003e zstd: Default to full zero frames (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1134\"\u003e#1134\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/8233c587ef6e7b0f5168bfc08e63ea37e97b2d36\"\u003e\u003ccode\u003e8233c58\u003c/code\u003e\u003c/a\u003e flate: Clean up histogram order (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1133\"\u003e#1133\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/bcf0d1289c8df01178af919dd5d8ff83afaa5471\"\u003e\u003ccode\u003ebcf0d12\u003c/code\u003e\u003c/a\u003e build(deps): bump the github-actions group with 3 updates (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1132\"\u003e#1132\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/cf758fe1c54e3049f302474d2a98afd3acc1a884\"\u003e\u003ccode\u003ecf758fe\u003c/code\u003e\u003c/a\u003e ci: Upgrade Go versions, clean up (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.0...v1.18.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/samber/lo` from 1.49.1 to 1.53.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/samber/lo/releases\"\u003egithub.com/samber/lo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.53.0\u003c/h2\u003e\n\u003cp\u003eAnnouncing the latest release of \u003ccode\u003elo\u003c/code\u003e with lots of good gifts! 🎁\u003c/p\u003e\n\u003cp\u003e🌊 First, a big thanks to \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e for making lots of \u003cstrong\u003eperformance improvements\u003c/strong\u003e in the recent weeks.\u003c/p\u003e\n\u003cp\u003e🧪 Second, this release introduces a new \u003cstrong\u003e\u003ccode\u003esimd\u003c/code\u003e experimental package\u003c/strong\u003e. If you run on an amd64 architecture and a recent CPU, you can perform very fast operations thanks to SIMD CPU instructions.\n-\u0026gt; Documentation: \u003ca href=\"https://lo.samber.dev/docs/experimental/simd\"\u003ehttps://lo.samber.dev/docs/experimental/simd\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e💥 Third, this version adds \u003cstrong\u003e\u003ccode\u003e*Err\u003c/code\u003e variants\u003c/strong\u003e of many \u003ccode\u003elo\u003c/code\u003e helpers (like \u003cstrong\u003e\u003ccode\u003eMapErr\u003c/code\u003e, \u003ccode\u003eFlatMapErr\u003c/code\u003e, \u003ccode\u003eReduceErr\u003c/code\u003e, etc.\u003c/strong\u003e) whose callbacks can return an error and short-circuit execution when one occurs.\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThe \u003ccode\u003esimd\u003c/code\u003e sub-package is considered \u003cem\u003enot stable\u003c/em\u003e. We might break the initial API based on developers' feedback in the coming months.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003chr /\u003e\n\u003ch2\u003eFeatures \u0026amp; improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: adding SIMD helpers by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/801\"\u003esamber/lo#801\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding Error variants: MapErr, FlatMapErr, ReduceErr... by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/823\"\u003esamber/lo#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: support for buffer iterator by \u003ca href=\"https://github.com/mimol91\"\u003e\u003ccode\u003e@​mimol91\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/824\"\u003esamber/lo#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add Take, TakeWhile, FilterTake, Window, and Sliding functions by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/760\"\u003esamber/lo#760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add a Concat slice function. by \u003ca href=\"https://github.com/FGasper\"\u003e\u003ccode\u003e@​FGasper\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/714\"\u003esamber/lo#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add iterator slice helpers by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/791\"\u003esamber/lo#791\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(it): adding loit.Concat by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/722\"\u003esamber/lo#722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Allow Union/Intersect to take many lists by \u003ca href=\"https://github.com/frankywahl\"\u003e\u003ccode\u003e@​frankywahl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/181\"\u003esamber/lo#181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add Clone function to return shallow copy of slice collections by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/732\"\u003esamber/lo#732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: IntersectBy by \u003ca href=\"https://github.com/ghosx\"\u003e\u003ccode\u003e@​ghosx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/653\"\u003esamber/lo#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Support Custom Assert by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/755\"\u003esamber/lo#755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Must support Custom error handler. by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/752\"\u003esamber/lo#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: WithoutNth handle non-comparable types by \u003ca href=\"https://github.com/urisimchoni\"\u003e\u003ccode\u003e@​urisimchoni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/774\"\u003esamber/lo#774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove unnecessary type arguments in \u003ccode\u003eNewThrottle\u003c/code\u003e by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/773\"\u003esamber/lo#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: lo.IntersectBy + adding loit.IntersectBy + adding doc by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/739\"\u003esamber/lo#739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: rename IsSortedByKey to IsSortedBy by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/735\"\u003esamber/lo#735\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(iter/tuples): support break iteration over Zip[By] seq by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/757\"\u003esamber/lo#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(it.Mode): align behavior with lo.Mode and ensure consistent slice… by \u003ca href=\"https://github.com/intojhanurag\"\u003e\u003ccode\u003e@​intojhanurag\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/711\"\u003esamber/lo#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve Clone function to preserve nilness and avoid liveness issues by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/740\"\u003esamber/lo#740\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: reset n counter per iteration in it.Replace by \u003ca href=\"https://github.com/LikimiaD\"\u003e\u003ccode\u003e@​LikimiaD\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/799\"\u003esamber/lo#799\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: make Ellipsis operate on runes instead of bytes to prevent Unicode truncation by \u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/796\"\u003esamber/lo#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct \u003ccode\u003eDropByIndex\u003c/code\u003e handling of negative indices out of bounds by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/778\"\u003esamber/lo#778\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: remove helpers deprecated for more than 3y by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/810\"\u003esamber/lo#810\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Optimize UniqMap to reduce unnecessary slice preallocation by \u003ca href=\"https://github.com/ivolkoff\"\u003e\u003ccode\u003e@​ivolkoff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/710\"\u003esamber/lo#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(it): simplify DropLast, TrimSuffix, TrimPrefix and use range loops by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/782\"\u003esamber/lo#782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebench: fix iterators to actually iterate in benchmarks by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/781\"\u003esamber/lo#781\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: simplify slice cut/trim prefix/suffix functions by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/787\"\u003esamber/lo#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimize Sliding by pre-allocating result capacity by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/783\"\u003esamber/lo#783\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/cf6fb4f9b08c1d3d6e309581316f106dc30b458e\"\u003e\u003ccode\u003ecf6fb4f\u003c/code\u003e\u003c/a\u003e bump v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/56ef3beaf8adfea1908b094e49b3b639ea604aab\"\u003e\u003ccode\u003e56ef3be\u003c/code\u003e\u003c/a\u003e feat: support for buffer iterator (\u003ca href=\"https://redirect.github.com/samber/lo/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6a9f881ae1ff32a7c650464615d175ef4c26d833\"\u003e\u003ccode\u003e6a9f881\u003c/code\u003e\u003c/a\u003e :lipstick:\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/7f0c2e0297fc2fdffe9c69c254dee8d00f60c90a\"\u003e\u003ccode\u003e7f0c2e0\u003c/code\u003e\u003c/a\u003e feat: adding UnzipByErrX helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/af46a13bfce4ae037193c23e05866df8d79cd163\"\u003e\u003ccode\u003eaf46a13\u003c/code\u003e\u003c/a\u003e feat: adding RejectErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6f42e74a117ce59882e92a9d4a5b05520d5dee33\"\u003e\u003ccode\u003e6f42e74\u003c/code\u003e\u003c/a\u003e doc: improve examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/ff0e293ce3dbde1e80a1b1eb059078aa7d1442c4\"\u003e\u003ccode\u003eff0e293\u003c/code\u003e\u003c/a\u003e feat: adding FilterErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/4bb58fd2c6d86bf54eb9408b8247d056b8f4a006\"\u003e\u003ccode\u003e4bb58fd\u003c/code\u003e\u003c/a\u003e feat: adding RepeatByErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/72a33aa3970554921210253dcce90540d6e34388\"\u003e\u003ccode\u003e72a33aa\u003c/code\u003e\u003c/a\u003e feat: adding FilterKeysErr + FilterValuesErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/dd1d58e324c2277117dbdbfa86f409473eda5ece\"\u003e\u003ccode\u003edd1d58e\u003c/code\u003e\u003c/a\u003e feat: adding FindDuplicatesByErr helper\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/samber/lo/compare/v1.49.1...v1.53.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/afero` from 1.14.0 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/afero/releases\"\u003egithub.com/spf13/afero's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 6.5.1 to 6.5.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/479\"\u003espf13/afero#479\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLint by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/492\"\u003espf13/afero#492\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/494\"\u003espf13/afero#494\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.5.0 to 4.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/493\"\u003espf13/afero#493\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/480\"\u003espf13/afero#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/496\"\u003espf13/afero#496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esupport aliyun oss storage with third-party link by \u003ca href=\"https://github.com/messikiller\"\u003e\u003ccode\u003e@​messikiller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/491\"\u003espf13/afero#491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.16 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/497\"\u003espf13/afero#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update x/test by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/502\"\u003espf13/afero#502\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/503\"\u003espf13/afero#503\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.6.0 to 4.7.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/505\"\u003espf13/afero#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/506\"\u003espf13/afero#506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(gcsfs): update object not exist check logic by \u003ca href=\"https://github.com/ahkui\"\u003e\u003ccode\u003e@​ahkui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/485\"\u003espf13/afero#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/508\"\u003espf13/afero#508\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/519\"\u003espf13/afero#519\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.4 to 3.29.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/524\"\u003espf13/afero#524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.30.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/537\"\u003espf13/afero#537\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/536\"\u003espf13/afero#536\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.7.1 to 4.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/533\"\u003espf13/afero#533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/527\"\u003espf13/afero#527\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/538\"\u003espf13/afero#538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: spelling errors (excpected -\u0026gt; expected, iself -\u0026gt; itself) by \u003ca href=\"https://github.com/MarkRosemaker\"\u003e\u003ccode\u003e@​MarkRosemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/523\"\u003espf13/afero#523\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/messikiller\"\u003e\u003ccode\u003e@​messikiller\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/491\"\u003espf13/afero#491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahkui\"\u003e\u003ccode\u003e@​ahkui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/485\"\u003espf13/afero#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/MarkRosemaker\"\u003e\u003ccode\u003e@​MarkRosemaker\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/523\"\u003espf13/afero#523\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/afero/compare/v1.14.0...v1.15.0\"\u003ehttps://github.com/spf13/afero/compare/v1.14.0...v1.15.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/399bb34ad9fd8a252ad1d8bfaef96279b66dc774\"\u003e\u003ccode\u003e399bb34\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/523\"\u003e#523\u003c/a\u003e from MarkRosemaker/fix-spelling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/9b67716b675a40406678b57cefe0260699008630\"\u003e\u003ccode\u003e9b67716\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/538\"\u003e#538\u003c/a\u003e from spf13/deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/f5f4f7bd6427212efca35481b3b8c749bbf06243\"\u003e\u003ccode\u003ef5f4f7b\u003c/code\u003e\u003c/a\u003e chore: update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/c245c4fc3df2e427d681479553a625c5ef0e1eb8\"\u003e\u003ccode\u003ec245c4f\u003c/code\u003e\u003c/a\u003e ci: update ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/85c49563d6385bdc0d6873937d5a28c4a5c6f5e6\"\u003e\u003ccode\u003e85c4956\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/527\"\u003e#527\u003c/a\u003e from spf13/dependabot/github_actions/actions/checkout...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/41206fdfdacaad1dffaad870ded6f497ae1b803a\"\u003e\u003ccode\u003e41206fd\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 4.2.2 to 5.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/a583fade54a843a334e7595da81e287aa7adb63a\"\u003e\u003ccode\u003ea583fad\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/533\"\u003e#533\u003c/a\u003e from spf13/dependabot/github_actions/actions/dependen...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/673c03e4c1ba4512a26a91b42602f762a93647af\"\u003e\u003ccode\u003e673c03e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/536\"\u003e#536\u003c/a\u003e from spf13/dependabot/github_actions/actions/setup-go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/ac849f6a1820b81c052bf0a64e09fd10c8c7a3e0\"\u003e\u003ccode\u003eac849f6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/537\"\u003e#537\u003c/a\u003e from spf13/dependabot/github_actions/github/codeql-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/9596fe84b763fd2e18267ac455a4cedba2655194\"\u003e\u003ccode\u003e9596fe8\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 3.29.7 to 3.30.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spf13/afero/compare/v1.14.0...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cast` from 1.7.1 to 1.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cast/releases\"\u003egithub.com/spf13/cast's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/275\"\u003espf13/cast#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/277\"\u003espf13/cast#277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/289\"\u003espf13/cast#289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.29.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/296\"\u003espf13/cast#296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.7.1 to 4.7.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/295\"\u003espf13/cast#295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/293\"\u003espf13/cast#293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.10 to 3.30.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/301\"\u003espf13/cast#301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/300\"\u003espf13/cast#300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.7.2 to 4.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/298\"\u003espf13/cast#298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAlways return empty map instead of nil when conversion fails by \u003ca href=\"https://github.com/andig\"\u003e\u003ccode\u003e@​andig\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/283\"\u003espf13/cast#283\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andig\"\u003e\u003ccode\u003e@​andig\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/283\"\u003espf13/cast#283\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cast/compare/v1.9.2...v1.10.0\"\u003ehttps://github.com/spf13/cast/compare/v1.9.2...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: float string to number parsing by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/276\"\u003espf13/cast#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cast/compare/v1.9.1...v1.9.2\"\u003ehttps://github.com/spf13/cast/compare/v1.9.1...v1.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: indirection of typed nils by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/273\"\u003espf13/cast#273\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cast/compare/v1.9.0...v1.9.1\"\u003ehttps://github.com/spf13/cast/compare/v1.9.0...v1.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.0\u003c/h2\u003e\n\u003ch2\u003eNotable new features 🎉\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCasting \u003cem\u003efrom\u003c/em\u003e type aliases is now supported for basic types\u003c/li\u003e\n\u003cli\u003eAdded generic functions: \u003ccode\u003eTo\u003c/code\u003e/\u003ccode\u003eToE\u003c/code\u003e, \u003ccode\u003eMust\u003c/code\u003e, \u003ccode\u003eToNumber\u003c/code\u003e/\u003ccode\u003eToNumberE\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eIncreased test coverage\u003c/li\u003e\n\u003cli\u003eConverting float numbers from string is now supported\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\nSince cast now supports converting float values from strings, a related edge case behaves differently:\u003c/p\u003e\n\u003cp\u003eIn previous versions, attempting to convert an empty string to a float \u003cstrong\u003eresulted in an error\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eStarting with this version, the same operation \u003cstrong\u003eno longer raises an error\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eTo maintain consistency with the rest of the library, an empty string now converts to the float value \u003ccode\u003e0.0\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/fc73346bfc4e6597bc520fb6eea04360299e77d2\"\u003e\u003ccode\u003efc73346\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/283\"\u003e#283\u003c/a\u003e from andig/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/6002cff5a3bc7b67b52c91999bab9e202bb4388b\"\u003e\u003ccode\u003e6002cff\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/298\"\u003e#298\u003c/a\u003e from spf13/dependabot/github_actions/actions/dependen...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/c1c153d6ac13157b2144e3e0552b60c9b0f62bec\"\u003e\u003ccode\u003ec1c153d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/300\"\u003e#300\u003c/a\u003e from spf13/dependabot/github_actions/actions/setup-go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/39beeac4bdd40af0083006e06b505d370eee56e7\"\u003e\u003ccode\u003e39beeac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/301\"\u003e#301\u003c/a\u003e from spf13/dependabot/github_actions/github/codeql-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/365e80cabc9ebdca18b3fc4e1f16cf664652b7b3\"\u003e\u003ccode\u003e365e80c\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 3.29.10 to 3.30.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/9f0f68b802eef3497be6e4ba9542d2bb409b884d\"\u003e\u003ccode\u003e9f0f68b\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5.5.0 to 6.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/d45dead50f72c7662de987b91c4944cee91395be\"\u003e\u003ccode\u003ed45dead\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/dependency-review-action from 4.7.2 to 4.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/004f51d2ec5beb17864a67ea0828cf96954b95ef\"\u003e\u003ccode\u003e004f51d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/293\"\u003e#293\u003c/a\u003e from spf13/dependabot/github_actions/actions/checkout...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/6458e07a1b5ec9f7dbd4884323a1406ef5cc0394\"\u003e\u003ccode\u003e6458e07\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/295\"\u003e#295\u003c/a\u003e from spf13/dependabot/github_actions/actions/dependen...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/970d9ea674b57f4b950f3fa76e51e94e710b72a1\"\u003e\u003ccode\u003e970d9ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/296\"\u003e#296\u003c/a\u003e from spf13/dependabot/github_actions/github/codeql-ac...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spf13/cast/compare/v1.7.1...v1.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/stretchr/testify` from 1.10.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stretchr/testify/releases\"\u003egithub.com/stretchr/testify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1785\"\u003e#1785\u003c/a\u003e introduced in v1.11.0 where expected argument values implementing the stringer interface (\u003ccode\u003eString() string\u003c/code\u003e) with a method which mutates their value, when passed to mock.Mock.On (\u003ccode\u003em.On(\u0026quot;Method\u0026quot;, \u0026lt;expected\u0026gt;).Return()\u003c/code\u003e) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1788\"\u003estretchr/testify#1788\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\"\u003ehttps://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFunctional Changes\u003c/h3\u003e\n\u003cp\u003ev1.11.0 Includes a number of performance improvements.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCall stack perf change for CallerInfo by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1614\"\u003estretchr/testify#1614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLazily render mock diff output on successful match by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1615\"\u003estretchr/testify#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check early in Eventually, EventuallyWithT, and Never by \u003ca href=\"https://github.com/cszczepaniak\"\u003e\u003ccode\u003e@​cszczepaniak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1427\"\u003estretchr/testify#1427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: add IsNotType by \u003ca href=\"https://github.com/bartventer\"\u003e\u003ccode\u003e@​bartventer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1730\"\u003estretchr/testify#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.JSONEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1754\"\u003estretchr/testify#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.YAMLEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1755\"\u003estretchr/testify#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: faster and simpler isEmpty using reflect.Value.IsZero by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1761\"\u003estretchr/testify#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: faster methods filtering (internal refactor) by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1758\"\u003estretchr/testify#1758\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eassert.ErrorAs: log target type by \u003ca href=\"https://github.com/craig65535\"\u003e\u003ccode\u003e@​craig65535\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1345\"\u003estretchr/testify#1345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix failure message formatting for Positive and Negative asserts in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1062\"\u003estretchr/testify#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorIs message when error is nil but an error was expected by \u003ca href=\"https://github.com/tsioftas\"\u003e\u003ccode\u003e@​tsioftas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1681\"\u003estretchr/testify#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix Subset/NotSubset when calling with mixed input types by \u003ca href=\"https://github.com/siliconbrain\"\u003e\u003ccode\u003e@​siliconbrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1729\"\u003estretchr/testify#1729\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorAs failure message when error is nil by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1734\"\u003estretchr/testify#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock.AssertNumberOfCalls: improve error msg by \u003ca href=\"https://github.com/3scalation\"\u003e\u003ccode\u003e@​3scalation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1743\"\u003estretchr/testify#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation, Build \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Fix typo in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1688\"\u003estretchr/testify#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace deprecated io/ioutil with io and os by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1684\"\u003estretchr/testify#1684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument consequences of calling t.FailNow() by \u003ca href=\"https://github.com/greg0ire\"\u003e\u003ccode\u003e@​greg0ire\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1710\"\u003estretchr/testify#1710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update docs for Unset \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1621\"\u003e#1621\u003c/a\u003e by \u003c...\n\n_Description has been truncated_","html_url":"https://github.com/wuxler/ruasec/pull/79","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wuxler%2Fruasec/issues/79","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/79/packages"},{"uuid":"4472085103","node_id":"PR_kwDORfkK687czNcN","number":39,"state":"open","title":"chore(deps): bump the go_modules group across 5 directories with 4 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-18T19:47:29.000Z","updated_at":"2026-05-18T19:52:57.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":4,"packages":[{"name":"golang.org/x/net","old_version":"0.0.0-20211006190231-62292e806868","new_version":"0.38.0","repository_url":"https://github.com/golang/net"},{"name":"golang.org/x/sys","old_version":"0.0.0-20211006194710-c8a6f5223071","new_version":"0.31.0","repository_url":"https://github.com/golang/sys"},{"name":"golang.org/x/sys","old_version":"0.33.0","new_version":"0.44.0","repository_url":"https://github.com/golang/sys"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the /cmd/syft/internal/test/integration/test-fixtures/image-go-bin-arch-coverage directory: [golang.org/x/net](https://github.com/golang/net).\nBumps the go_modules group with 2 updates in the /syft/pkg/cataloger/golang/test-fixtures/go-source directory: [golang.org/x/sys](https://github.com/golang/sys) and [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure).\nBumps the go_modules group with 1 update in the /syft/pkg/cataloger/golang/test-fixtures/image-not-a-module directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\nBumps the go_modules group with 1 update in the /syft/pkg/cataloger/golang/test-fixtures/image-small directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\nBumps the go_modules group with 1 update in the /syft/pkg/cataloger/golang/test-fixtures/image-small-upx directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\n\nUpdates `golang.org/x/net` from 0.0.0-20211006190231-62292e806868 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/net/commits/v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/sys` from 0.0.0-20211006194710-c8a6f5223071 to 0.31.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/fb1facd76f95fa87c151018200ea5e4892ff115d\"\u003e\u003ccode\u003efb1facd\u003c/code\u003e\u003c/a\u003e windows: avoid uint16 overflow in NewNTUnicodeString\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/94ad893e1e59c1d079221324d38945d2aad8703f\"\u003e\u003ccode\u003e94ad893\u003c/code\u003e\u003c/a\u003e windows: add GetIfTable2Ex, GetIpInterface{Entry,Table}, GetUnicastIpAddressT...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/54fe89f8411576c06b345b341ca79a77d878a4ad\"\u003e\u003ccode\u003e54fe89f\u003c/code\u003e\u003c/a\u003e cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/df7d5d7b60641d17d87e2b50911124cb65f954fd\"\u003e\u003ccode\u003edf7d5d7\u003c/code\u003e\u003c/a\u003e unix: automatically remove container created by mkall.sh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/68a4a8e945b22751c1a619261b1d755372a1d5f7\"\u003e\u003ccode\u003e68a4a8e\u003c/code\u003e\u003c/a\u003e unix: avoid nil pointer dereference in Utime\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/690c91f6ecf3b3ef141ad2aedb1306a868b3a176\"\u003e\u003ccode\u003e690c91f\u003c/code\u003e\u003c/a\u003e unix: add CPUSetDynamic for systems with more than 1024 CPUs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/f33a730cd0c449cfd6f7106780c73052e96cc33d\"\u003e\u003ccode\u003ef33a730\u003c/code\u003e\u003c/a\u003e windows: support nil security descriptor on GetNamedSecurityInfo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/493d1725989a7a3f3582adfa68faf7207aec666b\"\u003e\u003ccode\u003e493d172\u003c/code\u003e\u003c/a\u003e cpu: add runtime import in cpu_darwin_arm64_other.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/2c2be756b97dee6d15aba69839acfbd4e0f3ccc5\"\u003e\u003ccode\u003e2c2be75\u003c/code\u003e\u003c/a\u003e windows: use syscall.SyscallN in Proc.Call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/a76ec62d6c5389e4fe51c659ba926bf71e471a67\"\u003e\u003ccode\u003ea76ec62\u003c/code\u003e\u003c/a\u003e cpu: roll back \u0026quot;use IsProcessorFeaturePresent to calculate ARM64 on windows\u0026quot;\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/sys/compare/v0.33.0...v0.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/sys` from 0.33.0 to 0.44.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/fb1facd76f95fa87c151018200ea5e4892ff115d\"\u003e\u003ccode\u003efb1facd\u003c/code\u003e\u003c/a\u003e windows: avoid uint16 overflow in NewNTUnicodeString\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/94ad893e1e59c1d079221324d38945d2aad8703f\"\u003e\u003ccode\u003e94ad893\u003c/code\u003e\u003c/a\u003e windows: add GetIfTable2Ex, GetIpInterface{Entry,Table}, GetUnicastIpAddressT...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/54fe89f8411576c06b345b341ca79a77d878a4ad\"\u003e\u003ccode\u003e54fe89f\u003c/code\u003e\u003c/a\u003e cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/df7d5d7b60641d17d87e2b50911124cb65f954fd\"\u003e\u003ccode\u003edf7d5d7\u003c/code\u003e\u003c/a\u003e unix: automatically remove container created by mkall.sh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/68a4a8e945b22751c1a619261b1d755372a1d5f7\"\u003e\u003ccode\u003e68a4a8e\u003c/code\u003e\u003c/a\u003e unix: avoid nil pointer dereference in Utime\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/690c91f6ecf3b3ef141ad2aedb1306a868b3a176\"\u003e\u003ccode\u003e690c91f\u003c/code\u003e\u003c/a\u003e unix: add CPUSetDynamic for systems with more than 1024 CPUs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/f33a730cd0c449cfd6f7106780c73052e96cc33d\"\u003e\u003ccode\u003ef33a730\u003c/code\u003e\u003c/a\u003e windows: support nil security descriptor on GetNamedSecurityInfo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/493d1725989a7a3f3582adfa68faf7207aec666b\"\u003e\u003ccode\u003e493d172\u003c/code\u003e\u003c/a\u003e cpu: add runtime import in cpu_darwin_arm64_other.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/2c2be756b97dee6d15aba69839acfbd4e0f3ccc5\"\u003e\u003ccode\u003e2c2be75\u003c/code\u003e\u003c/a\u003e windows: use syscall.SyscallN in Proc.Call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/a76ec62d6c5389e4fe51c659ba926bf71e471a67\"\u003e\u003ccode\u003ea76ec62\u003c/code\u003e\u003c/a\u003e cpu: roll back \u0026quot;use IsProcessorFeaturePresent to calculate ARM64 on windows\u0026quot;\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/sys/compare/v0.33.0...v0.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dmgoldstein1/syft/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/dmgoldstein1/syft/pull/39","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/dmgoldstein1%2Fsyft/issues/39","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/39/packages"},{"uuid":"4439249688","node_id":"PR_kwDOOQ8lIc7bL5Ju","number":11,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 13 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-14T22:24:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T15:45:41.000Z","updated_at":"2026-05-14T22:24:52.000Z","time_to_close":110349,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":13,"packages":[{"name":"github.com/anchore/quill","old_version":"0.5.1","new_version":"0.7.1","repository_url":"https://github.com/anchore/quill"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/buger/jsonparser","old_version":"1.1.1","new_version":"1.1.2","repository_url":"https://github.com/buger/jsonparser"},{"name":"github.com/cloudflare/circl","old_version":"1.3.8","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/docker/cli","old_version":"27.5.0+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.1","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/go-git/go-git/v5","old_version":"5.13.1","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-jose/go-jose/v4","old_version":"4.0.5","new_version":"4.1.4","repository_url":"https://github.com/go-jose/go-jose"},{"name":"github.com/opencontainers/runc","old_version":"1.1.14","new_version":"1.2.8","repository_url":"https://github.com/opencontainers/runc"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/anchore/quill](https://github.com/anchore/quill) | `0.5.1` | `0.7.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.1` | `1.1.2` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.8` | `1.6.3` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `27.5.0+incompatible` | `29.2.0+incompatible` |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.1` | `5.9.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.13.1` | `5.19.0` |\n| [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) | `4.0.5` | `4.1.4` |\n| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.14` | `1.2.8` |\n\n\nUpdates `github.com/anchore/quill` from 0.5.1 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anchore/quill/releases\"\u003egithub.com/anchore/quill's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.7.1\u003c/h1\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow for unbounded reads for user controlled input [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/681\"\u003e#681\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAccount for excessive read limits in macho parsing [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/682\"\u003e#682\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eValidate developer log URL requests [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/680\"\u003e#680\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.7.0...v0.7.1\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch1\u003ev0.7.0\u003c/h1\u003e\n\u003ch3\u003eAdded Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edry run signing and notarization process before running in production [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/617\"\u003e#617\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/618\"\u003e#618\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTeamID is not set during signing [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/147\"\u003e#147\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/669\"\u003e#669\u003c/a\u003e \u003ca href=\"https://github.com/jflowers\"\u003e\u003ccode\u003e@​jflowers\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditional Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypo in install.sh help text [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/546\"\u003e#546\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/549\"\u003e#549\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003emigrate to latest tool ci patterns [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/670\"\u003e#670\u003c/a\u003e \u003ca href=\"https://github.com/spiffcs\"\u003e\u003ccode\u003e@​spiffcs\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate golang to v1.26 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/668\"\u003e#668\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003edoc: Add llms.txt for the 🤖 🕷️ [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/592\"\u003e#592\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eUpdate dependencies [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/627\"\u003e#627\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAdd periodic workflow to update certs [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/608\"\u003e#608\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003elint gh actions with zizmor [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/581\"\u003e#581\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate to go 1.24.x [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/543\"\u003e#543\u003c/a\u003e \u003ca href=\"https://github.com/westonsteimel\"\u003e\u003ccode\u003e@​westonsteimel\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate runners to ubuntu-24.04 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/541\"\u003e#541\u003c/a\u003e \u003ca href=\"https://github.com/kzantow\"\u003e\u003ccode\u003e@​kzantow\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.0\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/9cdb0823ea1d2c45dcc11557f8c5cd7291c75d29\"\u003e\u003ccode\u003e9cdb082\u003c/code\u003e\u003c/a\u003e do not allow for unbounded reads for user controlled input (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/681\"\u003e#681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/80cf3fe082678af0ec4f9f8dd93f39189d2dc1fe\"\u003e\u003ccode\u003e80cf3fe\u003c/code\u003e\u003c/a\u003e account for excessive read limits in macho parsing code (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/682\"\u003e#682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/e41d66a517c2dc20ad8e9fbccffbdc6ba5ef0020\"\u003e\u003ccode\u003ee41d66a\u003c/code\u003e\u003c/a\u003e validate developer log URL requests (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/899202c7eace3de7b3f4f7461bdfd1c4c38701db\"\u003e\u003ccode\u003e899202c\u003c/code\u003e\u003c/a\u003e update cred var values for p12 in release (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/679\"\u003e#679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/c73a37bd3b655633c1bd5466c2b2f65b2ae4032c\"\u003e\u003ccode\u003ec73a37b\u003c/code\u003e\u003c/a\u003e remove goreleaser config for release step + update tool refs (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/95e119c6cb513a69f6b45d3e86a9fbcb2c77b669\"\u003e\u003ccode\u003e95e119c\u003c/code\u003e\u003c/a\u003e persist credentials for git (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/02e765ab563811d7a3f0ede8df36977da92e8779\"\u003e\u003ccode\u003e02e765a\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/663\"\u003e#663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/530bb7f3ddf667d262891b79fb15c0147d81cf11\"\u003e\u003ccode\u003e530bb7f\u003c/code\u003e\u003c/a\u003e add test notarize command (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/3e8269c31055b1878a34c1954347254a42b37452\"\u003e\u003ccode\u003e3e8269c\u003c/code\u003e\u003c/a\u003e Set team ID during signing (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/12b3e8eb4c06d7582da9725fad3bc7c268872752\"\u003e\u003ccode\u003e12b3e8e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/blacktop/go-macho from 1.1.259 to 1.1.263 (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream` from 1.6.3 to 1.7.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/4599f78694cabb6853addabc6f92cb197fdb5647\"\u003e\u003ccode\u003e4599f78\u003c/code\u003e\u003c/a\u003e Release 2023-08-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2a439ce0fdda24816a5ea71c083765af67e93599\"\u003e\u003ccode\u003e2a439ce\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/46f31d76b34aefbc66bbfb08d2ef7e22267d4b66\"\u003e\u003ccode\u003e46f31d7\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/525486a4cfa9b8364ea5346a526dd1f92d3edc76\"\u003e\u003ccode\u003e525486a\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b4e3176642b69937575f61f752f7d094fb6f4084\"\u003e\u003ccode\u003eb4e3176\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2189\"\u003e#2189\u003c/a\u003e from aws/feat-presign-polly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/30fe9b8de4c8538156248ae21b577a3e49170750\"\u003e\u003ccode\u003e30fe9b8\u003c/code\u003e\u003c/a\u003e Modify and Merge polly mod import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f6c1d4839450e7f99850868570ff0c47850b72ca\"\u003e\u003ccode\u003ef6c1d48\u003c/code\u003e\u003c/a\u003e sync polly presigner from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/396f97a998c5fab5bc7ee7bd4297c6d0f42b661e\"\u003e\u003ccode\u003e396f97a\u003c/code\u003e\u003c/a\u003e Release 2023-08-18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/08ab45438df135fc66f2eaf80032694ff2486db3\"\u003e\u003ccode\u003e08ab454\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b50999bacbf780bf55d5c2b051c96e5c4467a5f6\"\u003e\u003ccode\u003eb50999b\u003c/code\u003e\u003c/a\u003e Update SDK's smithy-go dependency to v1.14.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/odb/v1.6.3...service/m2/v1.7.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/buger/jsonparser` from 1.1.1 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/buger/jsonparser/releases\"\u003egithub.com/buger/jsonparser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated travis to build for 1.13 to 1.15 by \u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003eeliminate 2 allocations in EachKey() by \u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003efix issue \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/150\"\u003e#150\u003c/a\u003e (in deleting case) by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efixing the oss-fuzz issue by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/227\"\u003ebuger/jsonparser#227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix parseInt overflow check false negative by \u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded bespoke error for null cases by \u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFuzzing: Add CIFuzz by \u003ca href=\"https://github.com/AdamKorcz\"\u003e\u003ccode\u003e@​AdamKorcz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/239\"\u003ebuger/jsonparser#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded latest versions of go to tests by \u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix EachKey pIdxFlags allocation by \u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on negative slice index in Delete with malformed JSON (GO-2026-4514) by \u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a69e7e01cd4ad67bdfd3ac2c080b9212af16f4b0\"\u003e\u003ccode\u003ea69e7e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/276\"\u003e#276\u003c/a\u003e from dbarrosop/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/d3eacc0bab779d6cf98221f5268828fff287876e\"\u003e\u003ccode\u003ed3eacc0\u003c/code\u003e\u003c/a\u003e fix: prevent panic on negative slice index in Delete with malformed JSON (GO-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/61b32cfdfa0f5d368ef7c7daef28ce12d538740f\"\u003e\u003ccode\u003e61b32cf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/241\"\u003e#241\u003c/a\u003e from unxcepted/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2181e8398f18397c9cacbaea9889314bb585e868\"\u003e\u003ccode\u003e2181e83\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/244\"\u003e#244\u003c/a\u003e from ScaleChamp/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/1510b5194182fc2fb898f28cdbceb42fd7258bfa\"\u003e\u003ccode\u003e1510b51\u003c/code\u003e\u003c/a\u003e Added latest versions of go to tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/6fc2e488ed3cc4f1f1debec3b0c70715bd7be6fd\"\u003e\u003ccode\u003e6fc2e48\u003c/code\u003e\u003c/a\u003e fix: eachkey allocation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a6f867eb7787e4ec54536b77b5d628ddf5c4f73d\"\u003e\u003ccode\u003ea6f867e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/239\"\u003e#239\u003c/a\u003e from AdamKorcz/cifuzz1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/cbc01fdbbe131706e89eeaaf0cd917760d8d3949\"\u003e\u003ccode\u003ecbc01fd\u003c/code\u003e\u003c/a\u003e Fuzzing: Add CIFuzz\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/dc92d6932a1272b4d8f485f798a88c3a75106256\"\u003e\u003ccode\u003edc92d69\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/228\"\u003e#228\u003c/a\u003e from jonomacd/null-handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2d9d6343e8621ddc18c70749663f74bc584c0de4\"\u003e\u003ccode\u003e2d9d634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/231\"\u003e#231\u003c/a\u003e from carsonip/fix-parseint-overflow-check\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.3.8 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.3.8...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 27.5.0+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v27.5.0...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-billy/v5` from 5.6.1 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.13.1 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.13.1...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-jose/go-jose/v4` from 4.0.5 to 4.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-jose/go-jose/releases\"\u003egithub.com/go-jose/go-jose/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eFixes Panic in JWE decryption. See \u003ca href=\"https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\"\u003ehttps://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cp\u003eThis release drops Go 1.23 support as that Go release is no longer supported. With that, we can drop \u003ccode\u003ex/crypto\u003c/code\u003e and no longer have any external dependencies in go-jose outside of the standard library!\u003c/p\u003e\n\u003cp\u003eThis release fixes a bug where a critical b64 header was ignored if in an unprotected header. It is now rejected instead of ignored.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove Go 1.23 support by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/205\"\u003ego-jose/go-jose#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject JWS with an unprotected critical b64 header by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/210\"\u003ego-jose/go-jose#210\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003ego-jose v4.1.2 improves some documentation, errors, and removes the only 3rd-party dependency.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate go-jose documentation by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/198\"\u003ego-jose/go-jose#198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove dependency on testify by \u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove error message for invalid private keys by \u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/195\"\u003ego-jose/go-jose#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJWK unsupported error when unmarshalling by \u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd JSONWebKey type to makeJWERecipient by \u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etestutils/assert: remove True, Nil, NotNil by \u003ca href=\"https://github.com/jsha\"\u003e\u003ccode\u003e@​jsha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/202\"\u003ego-jose/go-jose#202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop go-cmp dependency by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/186\"\u003ego-jose/go-jose#186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ejws: improve performance and allocations for ParseSignedCompact by \u003ca href=\"https://github.com/drakkan\"\u003e\u003ccode\u003e@​drakkan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/188\"\u003ego-jose/go-jose#188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd missing quote to unknown curve message \u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/170\"\u003e#170\u003c/a\u003e by \u003ca href=\"https://github.com/sudhanvaghebbale\"\u003e\u003ccode\u003e@​sudhanvaghebbale\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/189\"\u003ego-jose/go-jose#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incorrect validation by \u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/192\"\u003ego-jose/go-jose#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRestore Go 1.23 compatibility by \u003ca href=\"https://github.com/anuraaga\"\u003e\u003ccode\u003e@​anuraaga\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/193\"\u003ego-jose/go-jose#193\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drakkan\"\u003e\u003ccode\u003e@​drakkan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/188\"\u003ego-jose/go-jose#188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sudhanvaghebbale\"\u003e\u003ccode\u003e@​sudhanvaghebbale\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/189\"\u003ego-jose/go-jose#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/192\"\u003ego-jose/go-jose#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anuraaga\"\u003e\u003ccode\u003e@​anuraaga\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/193\"\u003ego-jose/go-jose#193\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/0e59876635f3dbf46d7b5e97b52bb75a3f96e7d9\"\u003e\u003ccode\u003e0e59876\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/ddffdbcec8bdadea8e02a20bdf19239878228215\"\u003e\u003ccode\u003eddffdbc\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/213\"\u003e#213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/5348b9a4ba4559d2266b5af89fb5353cd1a5360a\"\u003e\u003ccode\u003e5348b9a\u003c/code\u003e\u003c/a\u003e Reject JWS with an unprotected critical b64 header (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/210\"\u003e#210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9153a5e4549c95e97a84e41e6375dc90eac54241\"\u003e\u003ccode\u003e9153a5e\u003c/code\u003e\u003c/a\u003e Bump actions/setup-python from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/208\"\u003e#208\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/2126e17f8791f6a234e63b2e4e8cb9fac8605c3a\"\u003e\u003ccode\u003e2126e17\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/209\"\u003e#209\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9860c65054c4821d1e7c22200422b04181f58ebc\"\u003e\u003ccode\u003e9860c65\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/206\"\u003e#206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/14239fdb15b88e1c42e41621ef24f1112cf31b5a\"\u003e\u003ccode\u003e14239fd\u003c/code\u003e\u003c/a\u003e Remove Go 1.23 support (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/205\"\u003e#205\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a16e15813482ca5e9a679b7f5bb42ddfae616d43\"\u003e\u003ccode\u003ea16e158\u003c/code\u003e\u003c/a\u003e Update CI to run on Go 1.24 and 1.25 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/204\"\u003e#204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a1565a41aa008ae6545e0f50a636d254de5b4596\"\u003e\u003ccode\u003ea1565a4\u003c/code\u003e\u003c/a\u003e testutils/assert: remove True, Nil, NotNil (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/3a80e136a96e747bf44049414eadc02828df4d33\"\u003e\u003ccode\u003e3a80e13\u003c/code\u003e\u003c/a\u003e jwe: accept non-pointer JSONWebKey in Recipient (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/200\"\u003e#200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.0.5...v4.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.0.0 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.0.0...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/runc` from 1.1.14 to 1.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/releases\"\u003egithub.com/opencontainers/runc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003erunc v1.2.8 -- \u0026quot;鳥籠の中に囚われた屈辱を\u0026quot;\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nSome vendors were given a pre-release version of this release.\nThis public release includes two extra patches to fix regressions\ndiscovered very late during the embargo period and were thus not\nincluded in the pre-release versions. Please update to this version.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains fixes for three high-severity security\nvulnerabilities in runc (\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e, and\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e). All three vulnerabilities ultimately allow (through\ndifferent methods) for full container breakouts by bypassing runc's\nrestrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https:...\n\n_Description has been truncated_","html_url":"https://github.com/coutureb/goreleaser/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coutureb%2Fgoreleaser/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"},{"uuid":"4405205855","node_id":"PR_kwDOI9w5KM7ZeCaq","number":3911,"state":"open","title":"Bump the go_modules group across 1 directory with 9 updates","user":"dependabot[bot]","labels":["needs-ok-to-test","dependencies","Stale","go"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-08T09:10:15.000Z","updated_at":"2026-05-24T05:39:57.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":9,"packages":[{"name":"github.com/go-jose/go-jose/v3","old_version":"3.0.3","new_version":"3.0.5","repository_url":"https://github.com/go-jose/go-jose"},{"name":"github.com/opencontainers/selinux","old_version":"1.11.0","new_version":"1.13.0","repository_url":"https://github.com/opencontainers/selinux"},{"name":"github.com/sigstore/fulcio","old_version":"1.4.3","new_version":"1.8.5","repository_url":"https://github.com/sigstore/fulcio"},{"name":"github.com/sigstore/rekor","old_version":"1.2.2","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/sigstore/sigstore","old_version":"1.8.2","new_version":"1.10.3"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14"},{"name":"golang.org/x/crypto","old_version":"0.31.0","new_version":"0.46.0"},{"name":"golang.org/x/net","old_version":"0.25.0","new_version":"0.48.0"},{"name":"google.golang.org/grpc","old_version":"1.61.1","new_version":"1.78.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the /roles/copy_container/files/copy-quay directory: [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose), [github.com/opencontainers/selinux](https://github.com/opencontainers/selinux), [github.com/sigstore/fulcio](https://github.com/sigstore/fulcio) and [github.com/sigstore/rekor](https://github.com/sigstore/rekor).\n\nUpdates `github.com/go-jose/go-jose/v3` from 3.0.3 to 3.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-jose/go-jose/releases\"\u003egithub.com/go-jose/go-jose/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eFixes \u003ca href=\"https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\"\u003ehttps://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe recommend migrating from v3 to v4, and we will stop support v3 in the near future.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v3.0.4...v3.0.5\"\u003ehttps://github.com/go-jose/go-jose/compare/v3.0.4...v3.0.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eBackport fix for GHSA-c6gw-w398-hv78 CVE-2025-27144\n\u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/174\"\u003ego-jose/go-jose#174\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/be2f6548701d4ba561cd61c7d4a2f1289b66c273\"\u003e\u003ccode\u003ebe2f654\u003c/code\u003e\u003c/a\u003e ci: update Go versions for GHA workflows (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/221\"\u003e#221\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/02464163e1e891db85257cb8860978a1c0226016\"\u003e\u003ccode\u003e0246416\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/5253038e3b5f64a2200b5b6c72107bf9823f4358\"\u003e\u003ccode\u003e5253038\u003c/code\u003e\u003c/a\u003e Backport fix 167 to v3 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/047dc99758ca176080217a26d0f8a95a3350e7fb\"\u003e\u003ccode\u003e047dc99\u003c/code\u003e\u003c/a\u003e CI: Update github actions and go version (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/173\"\u003e#173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/0f017e9bc3fd4ee0ca9171c131d6eb3d196ab05b\"\u003e\u003ccode\u003e0f017e9\u003c/code\u003e\u003c/a\u003e Revert \u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/26\"\u003e#26\u003c/a\u003e (ignore unsupported JWKs in Sets) (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/131\"\u003e#131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/3e2bbef724ae666f9e6691659bd46bc0c3e0c7aa\"\u003e\u003ccode\u003e3e2bbef\u003c/code\u003e\u003c/a\u003e Unmarshal jwk keys with unsupported key type or algorithm into empty … (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/26\"\u003e#26\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/selinux` from 1.11.0 to 1.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/selinux/releases\"\u003egithub.com/opencontainers/selinux's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSwitch to golangci-lint v2 by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/230\"\u003eopencontainers/selinux#230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/233\"\u003eopencontainers/selinux#233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/234\"\u003eopencontainers/selinux#234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ekeyring: fix typo in EACCES check by \u003ca href=\"https://github.com/cyphar\"\u003e\u003ccode\u003e@​cyphar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/235\"\u003eopencontainers/selinux#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Go 1.25, drop go 1.23, bump golangci-lint by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/236\"\u003eopencontainers/selinux#236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eselinux: migrate to pathrs-lite procfs API by \u003ca href=\"https://github.com/cyphar\"\u003e\u003ccode\u003e@​cyphar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/237\"\u003eopencontainers/selinux#237\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/opencontainers/selinux/compare/v1.12.0...v1.13.0\"\u003ehttps://github.com/opencontainers/selinux/compare/v1.12.0...v1.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003cp\u003eThis release removes deprecated functions from the \u003ccode\u003elabel\u003c/code\u003e package,\nand improves documentation and error reporting of \u003ccode\u003eSetCreateKey\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eVERSION: remove by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/217\"\u003eopencontainers/selinux#217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: add AlmaLinux 8, CentOS Stream 9, and Fedora by \u003ca href=\"https://github.com/AkihiroSuda\"\u003e\u003ccode\u003e@​AkihiroSuda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/221\"\u003eopencontainers/selinux#221\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: install git-core by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/224\"\u003eopencontainers/selinux#224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: add openSUSE Tumbleweed by \u003ca href=\"https://github.com/AkihiroSuda\"\u003e\u003ccode\u003e@​AkihiroSuda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/223\"\u003eopencontainers/selinux#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version, deps, fix some linter issues... by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/218\"\u003eopencontainers/selinux#218\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elabel: remove deprecated stuff by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/228\"\u003eopencontainers/selinux#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove SetKeyCreate error reporting, fix test flakes by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/227\"\u003eopencontainers/selinux#227\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/opencontainers/selinux/compare/v1.11.1...v1.12.0\"\u003ehttps://github.com/opencontainers/selinux/compare/v1.11.1...v1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump to v1.11.0 by \u003ca href=\"https://github.com/rhatdan\"\u003e\u003ccode\u003e@​rhatdan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/197\"\u003eopencontainers/selinux#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix some error by \u003ca href=\"https://github.com/ningmingxiao\"\u003e\u003ccode\u003e@​ningmingxiao\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/200\"\u003eopencontainers/selinux#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update Go 1.21 support by \u003ca href=\"https://github.com/michalbiesek\"\u003e\u003ccode\u003e@​michalbiesek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/202\"\u003eopencontainers/selinux#202\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtend \u003ccode\u003ebuild-cross\u003c/code\u003e target with \u003ccode\u003eriscv64\u003c/code\u003e arch by \u003ca href=\"https://github.com/michalbiesek\"\u003e\u003ccode\u003e@​michalbiesek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/201\"\u003eopencontainers/selinux#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove nolint annotations for unix errno comparisons by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/203\"\u003eopencontainers/selinux#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: bump some actions by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/205\"\u003eopencontainers/selinux#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMisc nitpicks by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/206\"\u003eopencontainers/selinux#206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epwalk, pwalkdir: fix walk vs remove race by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/204\"\u003eopencontainers/selinux#204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions CI Go matrix for Go v1.22 by \u003ca href=\"https://github.com/austinvazquez\"\u003e\u003ccode\u003e@​austinvazquez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/209\"\u003eopencontainers/selinux#209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions packages to resolve deprecation warnings. by \u003ca href=\"https://github.com/austinvazquez\"\u003e\u003ccode\u003e@​austinvazquez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/208\"\u003eopencontainers/selinux#208\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd dependabot config by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/210\"\u003eopencontainers/selinux#210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump tim-actions/get-pr-commits from 1.3.0 to 1.3.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/211\"\u003eopencontainers/selinux#211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/213\"\u003eopencontainers/selinux#213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eShow SELinux label on failure by \u003ca href=\"https://github.com/rhatdan\"\u003e\u003ccode\u003e@​rhatdan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/216\"\u003eopencontainers/selinux#216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ningmingxiao\"\u003e\u003ccode\u003e@​ningmingxiao\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/200\"\u003eopencontainers/selinux#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/michalbiesek\"\u003e\u003ccode\u003e@​michalbiesek\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/202\"\u003eopencontainers/selinux#202\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/211\"\u003eopencontainers/selinux#211\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/4be9937fb76c0c49a30469135a4077fcc33712b8\"\u003e\u003ccode\u003e4be9937\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/237\"\u003e#237\u003c/a\u003e from cyphar/selinux-safe-procfs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/c8cfa6fd2d285a96022203163c2075eda85bff54\"\u003e\u003ccode\u003ec8cfa6f\u003c/code\u003e\u003c/a\u003e selinux: migrate to pathrs-lite procfs API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/f2424d8145e2ac45a0ec457e39758cd58e573285\"\u003e\u003ccode\u003ef2424d8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/236\"\u003e#236\u003c/a\u003e from kolyshkin/modernize-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/648ce7f0f85f4a310d1cd7317986fc1d6c8ff41c\"\u003e\u003ccode\u003e648ce7f\u003c/code\u003e\u003c/a\u003e ci: add go 1.25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/916cab932c940e0fc55f0c8404d503665160dd9c\"\u003e\u003ccode\u003e916cab9\u003c/code\u003e\u003c/a\u003e ci: bump golangci-lint to v2.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/b42e5c8eff8eab7ee590cc61d78fd3e2d38e3309\"\u003e\u003ccode\u003eb42e5c8\u003c/code\u003e\u003c/a\u003e all: format sources with latest gofumpt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/74393ea060f4db5bae4002d42d28b0907c8b26b6\"\u003e\u003ccode\u003e74393ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/235\"\u003e#235\u003c/a\u003e from cyphar/fix-keyring-err-check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/6ec194b9a845fa4a14cd6bd1c0458ddc44d21407\"\u003e\u003ccode\u003e6ec194b\u003c/code\u003e\u003c/a\u003e keyring: fix typo in EACCES check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/879a755db558501df06f4ea59461ebc2d0c4a991\"\u003e\u003ccode\u003e879a755\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/234\"\u003e#234\u003c/a\u003e from opencontainers/dependabot/github_actions/actions...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/3c1bd9a95bfcc23ae12ed024d1bc9db9537b2d4f\"\u003e\u003ccode\u003e3c1bd9a\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5 to 6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/opencontainers/selinux/compare/v1.11.0...v1.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/fulcio` from 1.4.3 to 1.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/fulcio/releases\"\u003egithub.com/sigstore/fulcio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.5\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003eThis resolves \u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\u003c/a\u003e - Server-side request forgery via MetaIssuer regex bypass\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eeaae2f2be56df9dea5f9b439ec81bedae4c0978d Add anchors when matching meta issuer regexp (GHSA-59jp-pj84-45mr) (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2263\"\u003e#2263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks for all contributors!\u003c/h3\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ef5bfa34740fc579523e2da9825ea575227331c6f build(deps): bump github.com/tink-crypto/tink-go/v2 from 2.5.0 to 2.6.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2246\"\u003e#2246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0039c980ab58e8cabf38d62fb80a607b5f21c0da build(deps): bump goa.design/goa/v3 from 3.22.6 to 3.23.4 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2245\"\u003e#2245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3a432f030f1dca4d088f1777f07947a85d1750cd build(deps): bump go.step.sm/crypto from 0.74.0 to 0.75.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef3aba4a94150cad7eaa7dc0445e8cdf6cb037c23 build(deps): bump the all group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2247\"\u003e#2247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee66a4c6f47d4052c7b38b84f081b26ca3191deb0 build(deps): bump the all group with 8 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2244\"\u003e#2244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea846db6473f4be95443f3772914a15cc156be7b6 build(deps): bump golang from \u003ccode\u003e20b91ed\u003c/code\u003e to \u003ccode\u003ea22b2e6\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2243\"\u003e#2243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5a012f5e4f9617fe649b08ec8531d1e8256577e4 update Run Invocation URI for circleci (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2242\"\u003e#2242\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59dde0af71dbeaa69b8c25edb107ac19bf3a05ce update builder to use go1.25.5 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2235\"\u003e#2235\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e1a6870c7d6f0d2ed6513104ec3f60f8ba5d91c32 build(deps): bump golang from 1.25.4 to 1.25.5 in the all group (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2236\"\u003e#2236\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks for all contributors!\u003c/h3\u003e\n\u003ch2\u003ev1.8.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003ev1.8.3 fixes \u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e3622f6e62cf74ff1477422a8c3aad4ca338ed047 update changelog for v1.8.3 release (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2234\"\u003e#2234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e765a0e57608b9ef390e1eeeea8595b9054c63a5a Merge commit from fork (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2233\"\u003e#2233\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e90f8520e1754b20ba0cb33d412ee15006711b85f build(deps): bump github.com/coreos/go-oidc/v3 from 3.16.0 to 3.17.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2225\"\u003e#2225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed88584108bf71c5d375a41a62c05de3c587bd35e build(deps): bump the all group across 1 directory with 6 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2232\"\u003e#2232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea387888860bff3f4100d35aa5a63306bb545e702 build(deps): bump the all group with 4 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e7b0c1a11da32a1eb485ea3368725028c4f3d35be build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2227\"\u003e#2227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef0a0d051798bb1869d79ba21fbb9b60bdd896664 build(deps): bump golang from \u003ccode\u003ee68f6a0\u003c/code\u003e to \u003ccode\u003e6981837\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4ed0ea1b43f96c571de5ed8b44a5703d6c5c2894 Switch docker env from ct_server to TesseraCT (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2210\"\u003e#2210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee902cf880ff56e6749725ea6d63299ab7b370c2d feat: Add support for skipping email_verified claim requirement per issuer (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0fc26c2c1d8a1e16802dd466fb233d69d3ef35d Add basic E2E tests (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2230\"\u003e#2230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea4ee8608f0349bd546b33406417f8ff1a58b09b1 build(deps): bump sigstore/scaffolding/trillian_log_signer (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2228\"\u003e#2228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e51d916e167276404d153607f076e5a7fb8f30986 build(deps): bump golang.org/x/crypto from 0.44.0 to 0.45.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebd3a515d86c015a70fa7abd47511fcb1108aafcf add meta-issuer circleci block (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec4d47896482f470adaf09dc7706a54fd66311bfd add circleci info to fulcio (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2192\"\u003e#2192\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks for all contributors!\u003c/h3\u003e\n\u003ch1\u003ev1.8.2\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/fulcio/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/fulcio's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev1.8.5\u003c/h1\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\u003c/a\u003e - Server-side request forgery via MetaIssuer regex bypass (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2263\"\u003e#2263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.8.4\u003c/h1\u003e\n\u003cp\u003eSame changelog as v1.8.3, with a few dependency bumps to resolve a breaking API change\u003c/p\u003e\n\u003ch1\u003ev1.8.3\u003c/h1\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\u003c/a\u003e; prevents OOM condition due to malformed OIDC token (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2233\"\u003e#2233\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Add support for skipping email_verified claim requirement per issuer (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd meta-issuer circleci block (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd circleci info to fulcio (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2192\"\u003e#2192\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eTesting\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd basic E2E tests (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2230\"\u003e#2230\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.8.2\u003c/h1\u003e\n\u003ch2\u003eTesting\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003emake email address in test cases rfc822 conformant (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2205\"\u003e#2205\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.8.1\u003c/h1\u003e\n\u003cp\u003eSame as v1.8.0, but with a fix for the CI build pipeline.\u003c/p\u003e\n\u003ch1\u003ev1.8.0\u003c/h1\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: K8s API does not accept unauthorized requests (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2111\"\u003e#2111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: vault for enterprise expects only the key name (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2117\"\u003e#2117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(config): respect cacert on oidc-issuers (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2098\"\u003e#2098\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRegister \u003ccode\u003e/healthz\u003c/code\u003e endpoint when listening on duplex http/grpc port (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2046\"\u003e#2046\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: adds cert loading and key-match validation. (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2173\"\u003e#2173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexpose gcp kms retry and timeout options (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2132\"\u003e#2132\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eserver: Use warning log level for client errors (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2147\"\u003e#2147\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/eaae2f2be56df9dea5f9b439ec81bedae4c0978d\"\u003e\u003ccode\u003eeaae2f2\u003c/code\u003e\u003c/a\u003e Add anchors when matching meta issuer regexp (GHSA-59jp-pj84-45mr) (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2263\"\u003e#2263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/9325775f9646bf8f9e1d592b70d437469665e5ee\"\u003e\u003ccode\u003e9325775\u003c/code\u003e\u003c/a\u003e Update changelog for v1.8.5 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2264\"\u003e#2264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/b23705dfa2c780a35c4c2431ee1d410a21e59bc4\"\u003e\u003ccode\u003eb23705d\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/api from 0.258.0 to 0.259.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2260\"\u003e#2260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/9e8841d1a25c3ac04431bc3f5cb6e464e305d423\"\u003e\u003ccode\u003e9e8841d\u003c/code\u003e\u003c/a\u003e build(deps): bump golang from \u003ccode\u003ea22b2e6\u003c/code\u003e to \u003ccode\u003e36b4f45\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2251\"\u003e#2251\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/5c135881b636773dbff529d2a7ef3a39a1fc40fd\"\u003e\u003ccode\u003e5c13588\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/4c823ae9f2d21467d7a296a44ad68a7a3b3f47ca\"\u003e\u003ccode\u003e4c823ae\u003c/code\u003e\u003c/a\u003e build(deps): bump the all group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2259\"\u003e#2259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/c15246a31188dc787d23de75e690e51e596d30f8\"\u003e\u003ccode\u003ec15246a\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/api from 0.257.0 to 0.258.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2252\"\u003e#2252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/f2e48e187c5e872375f641c2ed11b7d78324c73f\"\u003e\u003ccode\u003ef2e48e1\u003c/code\u003e\u003c/a\u003e Use transparency-dev tesseract image (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2250\"\u003e#2250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/9e26cb46dc2022c3b561b7386442a26490f3f9bc\"\u003e\u003ccode\u003e9e26cb4\u003c/code\u003e\u003c/a\u003e Add read service for CT log (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2258\"\u003e#2258\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/7bff3d6a63891a9267719ea982b2f05349e6b8f3\"\u003e\u003ccode\u003e7bff3d6\u003c/code\u003e\u003c/a\u003e Switch to go.yaml.in/yaml/v3 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2257\"\u003e#2257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/fulcio/compare/v1.4.3...v1.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/rekor` from 1.2.2 to 1.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/rekor/releases\"\u003egithub.com/sigstore/rekor's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev1.5.0\u003c/h1\u003e\n\u003cp\u003eThis release fixes GHSA-273p-m2cw-6833 and GHSA-4c4x-jm2x-pf9j. Note that this\ndrops support for fetching public keys via URL when querying the search API.\u003c/p\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed COSE and DSSE entries (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2729\"\u003e#2729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for fetching public keys by URL in the search index (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for a custom TLS config for clients (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2709\"\u003e#2709\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.4.3\u003c/h1\u003e\n\u003cp\u003eThis release reduces dependencies for a number of exported packages.\u003c/p\u003e\n\u003cp\u003eThis release also changes the format of the binary and container signature, which is now a\n\u003ca href=\"https://docs.sigstore.dev/about/bundle/\"\u003eSigstore bundle\u003c/a\u003e. To verify a release, use the\nlatest Cosign 3.x, verifying with\n\u003ccode\u003ecosign verify-blob --bundle \u0026lt;artifact\u0026gt;-keyless.sigstore.json \u0026lt;artifact\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eImprovements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003euse interruptable context to elegantly handle signals in rekor-cli (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2681\"\u003e#2681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestapi: Don't log client errors as errors (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2680\"\u003e#2680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: separate pki types from implementations (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2668\"\u003e#2668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee2e: don't mix e2e and regular utilities (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2672\"\u003e#2672\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: remove viper config from spec definitions (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2669\"\u003e#2669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elog: remove zap \u0026amp; go-chi dependecy from pkg/types (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2667\"\u003e#2667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update go-openapi/runtime to v0.29.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2670\"\u003e#2670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: remove double imported mapstructure pkg (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2671\"\u003e#2671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove archived dependency and use stdlib slices (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2650\"\u003e#2650\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(docs): guard unsafe int/uint conversions flagged by gosec (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2679\"\u003e#2679\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eContributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdamKorcz\u003c/li\u003e\n\u003cli\u003eBob Callaway\u003c/li\u003e\n\u003cli\u003eJussi Kukkonen\u003c/li\u003e\n\u003cli\u003eSachin Sampras M\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.4.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump google-github-actions/auth from 2.1.12 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/sigstore/rekor/pull/2601\"\u003esigstore/rekor#2601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/rekor/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/rekor's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev1.5.0\u003c/h1\u003e\n\u003cp\u003eThis release fixes GHSA-273p-m2cw-6833 and GHSA-4c4x-jm2x-pf9j. Note that this\ndrops support for fetching public keys via URL when querying the search API.\u003c/p\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed COSE and DSSE entries (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2729\"\u003e#2729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for fetching public keys by URL in the search index (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for a custom TLS config for clients (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2709\"\u003e#2709\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.4.3\u003c/h1\u003e\n\u003cp\u003eThis release reduces dependencies for a number of exported packages.\u003c/p\u003e\n\u003cp\u003eThis release also changes the format of the binary and container signature, which is now a\n\u003ca href=\"https://docs.sigstore.dev/about/bundle/\"\u003eSigstore bundle\u003c/a\u003e. To verify a release, use the\nlatest Cosign 3.x, verifying with\n\u003ccode\u003ecosign verify-blob --bundle \u0026lt;artifact\u0026gt;-keyless.sigstore.json \u0026lt;artifact\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eImprovements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003euse interruptable context to elegantly handle signals in rekor-cli (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2681\"\u003e#2681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestapi: Don't log client errors as errors (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2680\"\u003e#2680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: separate pki types from implementations (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2668\"\u003e#2668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee2e: don't mix e2e and regular utilities (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2672\"\u003e#2672\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: remove viper config from spec definitions (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2669\"\u003e#2669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elog: remove zap \u0026amp; go-chi dependecy from pkg/types (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2667\"\u003e#2667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update go-openapi/runtime to v0.29.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2670\"\u003e#2670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: remove double imported mapstructure pkg (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2671\"\u003e#2671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove archived dependency and use stdlib slices (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2650\"\u003e#2650\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(docs): guard unsafe int/uint conversions flagged by gosec (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2679\"\u003e#2679\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eContributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdamKorcz\u003c/li\u003e\n\u003cli\u003eBob Callaway\u003c/li\u003e\n\u003cli\u003eJussi Kukkonen\u003c/li\u003e\n\u003cli\u003eSachin Sampras M\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.4.2\u003c/h1\u003e\n\u003cp\u003eThis release includes some performance optimizations and a bug fix for publishing events to a pub/sub topic.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/fe9717fd6ee4cfecedc30e5fd64c9872bc2ac61c\"\u003e\u003ccode\u003efe9717f\u003c/code\u003e\u003c/a\u003e Changelog for v1.5.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2730\"\u003e#2730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/60ef2bceba192c5bf9327d003bceea8bf1f8275f\"\u003e\u003ccode\u003e60ef2bc\u003c/code\u003e\u003c/a\u003e Drop support for fetching public keys by URL in the search index (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/ca625dcde8fca15da88a93a9e48b1af84e29241f\"\u003e\u003ccode\u003eca625dc\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/redis/go-redis/v9 from 9.14.1 to 9.17.2 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2706\"\u003e#2706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/39bae3d192bce48ef4ef2cbd1788fb5770fee8cd\"\u003e\u003ccode\u003e39bae3d\u003c/code\u003e\u003c/a\u003e Merge commit from fork (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2729\"\u003e#2729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/812e699631adbb7a4fe383be9a1b8b93dd1ff14f\"\u003e\u003ccode\u003e812e699\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/api from 0.256.0 to 0.259.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2723\"\u003e#2723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/4596e4e30fa6159889074c01bedad8a690141346\"\u003e\u003ccode\u003e4596e4e\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/net from 0.47.0 to 0.48.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2722\"\u003e#2722\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/a3e73cdcf599e1125fedbbd80976bca98ed976b4\"\u003e\u003ccode\u003ea3e73cd\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/sigstore/sigstore from 1.9.5 to 1.10.3 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2724\"\u003e#2724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/94d259c0b6ac951fd60a80e80f323a7108f2d612\"\u003e\u003ccode\u003e94d259c\u003c/code\u003e\u003c/a\u003e build(deps): Bump the all group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2727\"\u003e#2727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/a5329c9a605b0be09fbb4341f8661a35954f31bc\"\u003e\u003ccode\u003ea5329c9\u003c/code\u003e\u003c/a\u003e build(deps): Bump the all group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2728\"\u003e#2728\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/5e6bdcdcfdbec3f70a8b22be21a830ac94eac143\"\u003e\u003ccode\u003e5e6bdcd\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.com/cloudsdktool/google-cloud-cli (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2726\"\u003e#2726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/rekor/compare/v1.2.2...v1.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/sigstore` from 1.8.2 to 1.10.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/sigstore/releases\"\u003egithub.com/sigstore/sigstore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003ev1.10.3 adds \u003ccode\u003eValidatePubKey\u003c/code\u003e back to the \u003ccode\u003ecryptoutils\u003c/code\u003e package to avoid a breaking API change.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd back ValidatePubKey as a deprecated, minimal function in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2235\"\u003esigstore/sigstore#2235\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/sigstore/sigstore/compare/v1.10.2...v1.10.3\"\u003ehttps://github.com/sigstore/sigstore/compare/v1.10.2...v1.10.3\u003c/a\u003e\u003c/p\u003e\n\u003ch1\u003ev1.10.2\u003c/h1\u003e\n\u003cp\u003eFunctionally equivalent to \u003ca href=\"https://github.com/sigstore/sigstore/releases/tag/v1.10.0\"\u003ev1.10.0\u003c/a\u003e. v1.10.1 has been retracted to remove copied code.\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch3\u003eBreaking change\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e moves \u003ccode\u003ecryptoutils.ValidatePubKey\u003c/code\u003e to \u003ccode\u003egoodkey.ValidatePubKey\u003c/code\u003e to minimize the dependency tree for clients using the cryptoutils package.\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(hashivault): token helper in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2174\"\u003esigstore/sigstore#2174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset GoogleAPIClientOption on GCP KMS provider in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2128\"\u003esigstore/sigstore#2128\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecryptoutils: move goodkey validation to separate package in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStop depending on golang.org/x/crypto for sha3 in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2209\"\u003esigstore/sigstore#2209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove duplicative dependency for portable browser opener in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2178\"\u003esigstore/sigstore#2178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econsolidate deep Equal usage to one library in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2177\"\u003esigstore/sigstore#2177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop redundant aws-sdk-go dependency in the e2e kms tests in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2172\"\u003esigstore/sigstore#2172\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eBreaking change\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e moves \u003ccode\u003ecryptoutils.ValidatePubKey\u003c/code\u003e to \u003ccode\u003egoodkey.ValidatePubKey\u003c/code\u003e to minimize the dependency tree for clients using the \u003ccode\u003ecryptoutils\u003c/code\u003e package.\u003c/p\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(hashivault): token helper in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2174\"\u003esigstore/sigstore#2174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset GoogleAPIClientOption on GCP KMS provider in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2128\"\u003esigstore/sigstore#2128\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRefactoring\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ecryptoutils: move goodkey validation to separate package in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStop depending on golang.org/x/crypto for sha3 in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2209\"\u003esigstore/sigstore#2209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove duplicative dependency for portable browser opener in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2178\"\u003esigstore/sigstore#2178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econsolidate deep Equal usage to one library in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2177\"\u003esigstore/sigstore#2177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop redundant aws-sdk-go dependency in the e2e kms tests in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2172\"\u003esigstore/sigstore#2172\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/72f0ed74d76419474f86933a4387851baf999739\"\u003e\u003ccode\u003e72f0ed7\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2230\"\u003e#2230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/b257168a1a41d46d432231173bfd66590d08819b\"\u003e\u003ccode\u003eb257168\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/aws/aws-sdk-go-v2 in /pkg/signature/kms/aws (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/84f57b8bdb7fda0c4a6f914670470849cc86d21e\"\u003e\u003ccode\u003e84f57b8\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/sigstore/sigstore (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2221\"\u003e#2221\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/bdc1a865e428aba7cbd5f5a6ac15753f4eadf4b1\"\u003e\u003ccode\u003ebdc1a86\u003c/code\u003e\u003c/a\u003e build(deps): Bump actions/checkout from 5.0.1 to 6.0.0 (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/11dfe81da1f12c52b3b4b1e4b4925e029a800ae8\"\u003e\u003ccode\u003e11dfe81\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/aws (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2236\"\u003e#2236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/021494802f9d12cd63d0848a6ad2989377e4db47\"\u003e\u003ccode\u003e0214948\u003c/code\u003e\u003c/a\u003e Add back ValidatePubKey as a deprecated, minimal function (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2235\"\u003e#2235\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/cc26bb8da52fd42201a981055e18b46e58628340\"\u003e\u003ccode\u003ecc26bb8\u003c/code\u003e\u003c/a\u003e build(deps): Bump localstack/localstack in /test/e2e in the all group (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2227\"\u003e#2227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/63ab8d80edce6abcb9caee90c5dfde36a98b52c1\"\u003e\u003ccode\u003e63ab8d8\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/aws/aws-sdk-go-v2/service/kms (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2229\"\u003e#2229\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/9e629f05d3f03bad8e8ac31d339f506fe3197271\"\u003e\u003ccode\u003e9e629f0\u003c/code\u003e\u003c/a\u003e build(deps): Bump the all group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2219\"\u003e#2219\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/234b99de441c3a727399c0b8c54e8c2c19075fa2\"\u003e\u003ccode\u003e234b99d\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/coreos/go-oidc/v3 from 3.16.0 to 3.17.0 (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2223\"\u003e#2223\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/sigstore/compare/v1.8.2...v1.10.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.31.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.31.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.25.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/35e1306bddd863f360fb94480c5fed84229953f0\"\u003e\u003ccode\u003e35e1306\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/7c360367ab7e57c0cfb7aef368fc6acefaaac3b1\"\u003e\u003ccode\u003e7c36036\u003c/code\u003e\u003c/a\u003e http2, webdav, websocket: fix %q verb uses with wrong type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ec11eccf5a0f725281df0cdf40bb7ebef51d57ea\"\u003e\u003ccode\u003eec11ecc\u003c/code\u003e\u003c/a\u003e trace: fix data race in RenderEvents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/bff14c52567061031b9761881907c39e24792736\"\u003e\u003ccode\u003ebff14c5\u003c/code\u003e\u003c/a\u003e http2: don't PING a responsive server when resetting a stream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/88a642172c174ab11f4c56f0ede777de3c8a21d4\"\u003e\u003ccode\u003e88a6421\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: avoid use of \u0026quot;strings\u0026quot; and \u0026quot;math\u0026quot; in dns/dnsmessage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/123d099e1bd872b38247bbcf9856540b8420d18d\"\u003e\u003ccode\u003e123d099\u003c/code\u003e\u003c/a\u003e http2: support net/http.Transport.NewClientConn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/346cc6157ee53301dea14e57a45c22368ab46e55\"\u003e\u003ccode\u003e346cc61\u003c/code\u003e\u003c/a\u003e webdav: relax test to check for any redirect status, not just 301\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.25.0...v0.48.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.61.1 to 1.78.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.78.0\u003c/h2\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eclient: Align URL validation with Go 1.26+ to now reject target URLs with unbracketed colons in the hostname. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8716\"\u003e#8716\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/neild\"\u003e\u003ccode\u003e@​neild\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport/client : Return status code \u003ccode\u003eUnknown\u003c/code\u003e on malformed grpc-status. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8735\"\u003e#8735\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003exds/resolver:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eDrop previous route resources and report an error when no matching virtual host is found.\u003c/li\u003e\n\u003cli\u003eOnly log LDS/RDS configuration errors following a successful update and retain the last valid resource to prevent transient failures. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8711\"\u003e#8711\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats/otel: Add backend service label to weighted round robin metrics as part of A89. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8737\"\u003e#8737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003estats/otel: Add subchannel metrics (without the disconnection reason) to eventually replace the pickfirst metrics. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8738\"\u003e#8738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient: Wait for all pending goroutines to complete when closing a graceful switch balancer. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8746\"\u003e#8746\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/twz123\"\u003e\u003ccode\u003e@​twz123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eclient: Add \u003ccode\u003eexperimental.AcceptCompressors\u003c/code\u003e so callers can restrict the \u003ccode\u003egrpc-accept-encoding\u003c/code\u003e header advertised for a call. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8718\"\u003e#8718\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/iblancasa\"\u003e\u003ccode\u003e@​iblancasa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exds: Fix a bug in \u003ccode\u003eStringMatcher\u003c/code\u003e where regexes would match incorrectly when ignore_case is set to true. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient:\n\u003cul\u003e\n\u003cli\u003eChange connectivity state to CONNECTING when creating the name resolver (as part of exiting IDLE).\u003c/li\u003e\n\u003cli\u003eChange connectivity state to TRANSIENT_FAILURE if name resolver creation fails (as part of exiting IDLE).\u003c/li\u003e\n\u003cli\u003eChange connectivity state to IDLE after idle timeout expires even when current state is TRANSIENT_FAILURE.\u003c/li\u003e\n\u003cli\u003eFix a bug that resulted in \u003ccode\u003eOnFinish\u003c/code\u003e call option not being invoked for RPCs where stream creation failed. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8710\"\u003e#8710\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exdsclient: Fix a race in the xdsClient that could lead to resource-not-found errors. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8627\"\u003e#8627\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Round up to nearest 4KiB for pool allocations larger than 1MiB. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8705\"\u003e#8705\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/cjc25\"\u003e\u003ccode\u003e@​cjc25\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.77.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Replace the \u003ccode\u003eReader\u003c/code\u003e interface with a struct for better performance and maintainability. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8669\"\u003e#8669\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/pickfirst: Remove support for the old \u003ccode\u003epick_first\u003c/code\u003e LB policy via the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST=false\u003c/code\u003e. The new \u003ccode\u003epick_first\u003c/code\u003e has been the default since \u003ccode\u003ev1.71.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8672\"\u003e#8672\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exdsclient: Fix a race condition in the ADS stream implementation that could result in \u003ccode\u003eresource-not-found\u003c/code\u003e errors, causing the gRPC client channel to move to \u003ccode\u003eTransientFailure\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8605\"\u003e#8605\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient: Ignore HTTP status header for gRPC streams. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8548\"\u003e#8548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient: Set a read deadline when closing a transport to prevent it from blocking indefinitely on a broken connection. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8534\"\u003e#8534\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/9df039ef2c921978514b600c9d5c6bf25cce54f6\"\u003e\u003ccode\u003e9df039e\u003c/code\u003e\u003c/a\u003e Change version to 1.78.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/9b990b6355c443ecf9e71f118f7097b62bc3299a\"\u003e\u003ccode\u003e9b990b6\u003c/code\u003e\u003c/a\u003e gracefulswitch: Wait for all goroutines on close (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8746\"\u003e#8746\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/6677d9a9cf1dd8227673253015027de0addeeafb\"\u003e\u003ccode\u003e6677d9a\u003c/code\u003e\u003c/a\u003e xds: Fixing a typo (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8760\"\u003e#8760\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/d35cedde1ee806f3c578aba8c59bec7117ae0bc3\"\u003e\u003ccode\u003ed35cedd\u003c/code\u003e\u003c/a\u003e xds/resolver: pass route's auto_host_rewrite to LB picker (gRFC A81) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8740\"\u003e#8740\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/d931fdc379623f36d2050487887f5465a18b7912\"\u003e\u003ccode\u003ed931fdc\u003c/code\u003e\u003c/a\u003e client: allow overriding grpc-accept-encoding header (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8718\"\u003e#8718\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/0800ec75223cd0995d599002581eafe2151c6df3\"\u003e\u003ccode\u003e0800ec7\u003c/code\u003e\u003c/a\u003e xds/clusterimpl: update TestChildPolicyChangeOnConfigUpdate to use custom lb ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/6553ea1a1d99ff4e3a516499330bf47607e7708f\"\u003e\u003ccode\u003e6553ea1\u003c/code\u003e\u003c/a\u003e stats/otel: Add subchannel metrics (A94) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8738\"\u003e#8738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/81a00cecc0abe8a7d7140967f96d9cc0729a3aa4\"\u003e\u003ccode\u003e81a00ce\u003c/code\u003e\u003c/a\u003e grpc: Fixing spelling typo (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8756\"\u003e#8756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/e413838c3b7b8b3e94754cb3704751e49f917358\"\u003e\u003ccode\u003ee413838\u003c/code\u003e\u003c/a\u003e client: Change connectivity state to CONNECTING when creating the name resolv...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/f9d2bdb34edcd95f0ca9e2cfaba692722cb85ee2\"\u003e\u003ccode\u003ef9d2bdb\u003c/code\u003e\u003c/a\u003e stats/otel: Add grpc.lb.backend_service label to wrr metrics (A89) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8737\"\u003e#8737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.61.1...v1.78.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/openstack-k8s-operators/ci-framework/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/openstack-k8s-operators/ci-framework/pull/3911","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/openstack-k8s-operators%2Fci-framework/issues/3911","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3911/packages"},{"uuid":"4293622165","node_id":"PR_kwDOMtLWjc7T17by","number":635,"state":"open","title":"chore(deps): bump the go_modules group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T06:41:47.000Z","updated_at":"2026-04-20T06:42:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":8,"packages":[{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/consensys/gnark-crypto","old_version":"0.12.1","new_version":"0.18.1","repository_url":"https://github.com/consensys/gnark-crypto"},{"name":"github.com/go-jose/go-jose/v4","old_version":"4.1.1","new_version":"4.1.4","repository_url":"https://github.com/go-jose/go-jose"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.9","new_version":"1.8.6","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.15"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.37.0","new_version":"1.42.0"},{"name":"golang.org/x/crypto","old_version":"0.41.0","new_version":"0.49.0"},{"name":"google.golang.org/grpc","old_version":"1.75.0","new_version":"1.79.3"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the /tests/interchain directory: [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519), [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto), [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) and [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter).\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/consensys/gnark-crypto` from 0.12.1 to 0.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/consensys/gnark-crypto/releases\"\u003egithub.com/consensys/gnark-crypto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.18.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\"\u003ehttps://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: disable cobra bit reverse for small fields by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/662\"\u003eConsensys/gnark-crypto#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: adds avx512 poseidon2 for small fields by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/665\"\u003eConsensys/gnark-crypto#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGKR Gate Registry by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/652\"\u003eConsensys/gnark-crypto#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused benchmark script by \u003ca href=\"https://github.com/ivokub\"\u003e\u003ccode\u003e@​ivokub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/675\"\u003eConsensys/gnark-crypto#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove GKR from gnark-crypto by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/670\"\u003eConsensys/gnark-crypto#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: make \u0026lt;31 bit field generated using uint32 by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/676\"\u003eConsensys/gnark-crypto#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: hash to curve by \u003ca href=\"https://github.com/ivokub\"\u003e\u003ccode\u003e@​ivokub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/674\"\u003eConsensys/gnark-crypto#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Eisenstein Half-GCD convergence by \u003ca href=\"https://github.com/feltroidprime\"\u003e\u003ccode\u003e@​feltroidprime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/680\"\u003eConsensys/gnark-crypto#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat/hashregistry by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/687\"\u003eConsensys/gnark-crypto#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat/fftext by \u003ca href=\"https://github.com/YaoJGalteland\"\u003e\u003ccode\u003e@​YaoJGalteland\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/684\"\u003eConsensys/gnark-crypto#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat/vortex options by \u003ca href=\"https://github.com/ThomasPiellard\"\u003e\u003ccode\u003e@​ThomasPiellard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/689\"\u003eConsensys/gnark-crypto#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[secp256k1]: replace outdated link to article by \u003ca href=\"https://github.com/gap-editor\"\u003e\u003ccode\u003e@​gap-editor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/690\"\u003eConsensys/gnark-crypto#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: remove dependency on internal package in ecc.go by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/693\"\u003eConsensys/gnark-crypto#693\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/feltroidprime\"\u003e\u003ccode\u003e@​feltroidprime\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/680\"\u003eConsensys/gnark-crypto#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/YaoJGalteland\"\u003e\u003ccode\u003e@​YaoJGalteland\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/684\"\u003eConsensys/gnark-crypto#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gap-editor\"\u003e\u003ccode\u003e@​gap-editor\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/690\"\u003eConsensys/gnark-crypto#690\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Consensys/gnark-crypto/compare/v0.17.0...v0.18.0\"\u003ehttps://github.com/Consensys/gnark-crypto/compare/v0.17.0...v0.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: missing Poseidon2 round keys by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/621\"\u003eConsensys/gnark-crypto#621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Poseidon2 Hash Instantiation for BLS12-377 by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/623\"\u003eConsensys/gnark-crypto#623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add Grumpkin elliptic curve (2-cycle with BN254) by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/625\"\u003eConsensys/gnark-crypto#625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerf: Poseidon2 GKR circuit by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/628\"\u003eConsensys/gnark-crypto#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add sis avx512 and fft avx512 for koalabear by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/622\"\u003eConsensys/gnark-crypto#622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInterpolateOnRange refactor by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/634\"\u003eConsensys/gnark-crypto#634\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add auto close PR workflow by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/638\"\u003eConsensys/gnark-crypto#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: subgroup membership by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/635\"\u003eConsensys/gnark-crypto#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: poseidon2 for koala-bear, baby-bear and goldilocks by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/629\"\u003eConsensys/gnark-crypto#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: generify poseidon2 parameters for other curves/fr by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/636\"\u003eConsensys/gnark-crypto#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: baby-bear and koala-bear extensions of degree 4 by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/643\"\u003eConsensys/gnark-crypto#643\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: ensure fast path is taken only with fixed bound and degree by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/651\"\u003eConsensys/gnark-crypto#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePoseidon2 compression for small fields by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/644\"\u003eConsensys/gnark-crypto#644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: poseidon2 templates by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/648\"\u003eConsensys/gnark-crypto#648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: improve NAF decomposition test coverage by \u003ca href=\"https://github.com/DeVikingMark\"\u003e\u003ccode\u003e@​DeVikingMark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/617\"\u003eConsensys/gnark-crypto#617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: generate code for poseidon2_test by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/660\"\u003eConsensys/gnark-crypto#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(bn254, bls12-381): test points intentionally not on sugroups G1/2 by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/658\"\u003eConsensys/gnark-crypto#658\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: generify small fields extensions by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/647\"\u003eConsensys/gnark-crypto#647\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DeVikingMark\"\u003e\u003ccode\u003e@​DeVikingMark\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/617\"\u003eConsensys/gnark-crypto#617\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md\"\u003egithub.com/consensys/gnark-crypto's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[v0.18.1] - 2025-10-28\u003c/h2\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd CHANGELOG for 0.18.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003elimit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\n\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[v0.18.0] - 2025-06-09\u003c/h2\u003e\n\u003ch3\u003eBuild\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump golang.org/x/crypto from 0.33.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove unused benchmark script (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereplace outdated link to article (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/690\"\u003e#690\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eExperiment\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003evortex on koalabear (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/645\"\u003e#645\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeat\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove dependency on internal package in ecc.go (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/693\"\u003e#693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emake \u0026lt;31 bit field generated using uint32 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/676\"\u003e#676\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove unimplemented path from fft ext\u003c/li\u003e\n\u003cli\u003eEisenstein Half-GCD convergence (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadds avx512 poseidon2 for small fields (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/665\"\u003e#665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove useless copies in e4 mul by elem (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/667\"\u003e#667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edisable cobra bit reverse for small fields (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/662\"\u003e#662\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ehash to curve (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/674\"\u003e#674\u003c/a\u003e)\n\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[v0.17.0] - 2025-03-11\u003c/h2\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove useless github workflow\u003c/li\u003e\n\u003cli\u003egenerify poseidon2 parameters for other curves/fr (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/636\"\u003e#636\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd auto close PR workflow (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/638\"\u003e#638\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeat\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebaby-bear and koala-bear extensions of degree 4 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/643\"\u003e#643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eposeidon2 for koala-bear, baby-bear and goldilocks (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/629\"\u003e#629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd sis avx512 and fft avx512 for koalabear (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/622\"\u003e#622\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Grumpkin elliptic curve (2-cycle with BN254) (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/625\"\u003e#625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePoseidon2 Hash Instantiation for BLS12-377 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/623\"\u003e#623\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eposeidon2 templates (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/648\"\u003e#648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eensure fast path is taken only with fixed bound and degree (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emissing Poseidon2 round keys (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/621\"\u003e#621\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esubgroup membership (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/635\"\u003e#635\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePoseidon2 GKR circuit (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/628\"\u003e#628\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003egenerify small fields extensions (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003egenerate code for poseidon2_test (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/660\"\u003e#660\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eStyle\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/fb04e95c3b2fca34f2cc773d3e8c1f930ede271a\"\u003e\u003ccode\u003efb04e95\u003c/code\u003e\u003c/a\u003e docs: add CHANGELOG for 0.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/0a4d04ae621bc19b6b40c6c7b8fa91f08b434533\"\u003e\u003ccode\u003e0a4d04a\u003c/code\u003e\u003c/a\u003e perf: limit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/f8ab23ad72836de95a017e7df1930992f291a509\"\u003e\u003ccode\u003ef8ab23a\u003c/code\u003e\u003c/a\u003e fix: remove unimplemented path from fft ext\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/2b70394b1962337a39546e67c6db125628d46118\"\u003e\u003ccode\u003e2b70394\u003c/code\u003e\u003c/a\u003e feat: remove dependency on internal package in ecc.go (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/693\"\u003e#693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/ca72a0f722db3704e764f67e1bb893459501cd5f\"\u003e\u003ccode\u003eca72a0f\u003c/code\u003e\u003c/a\u003e docs: replace outdated link to article (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/690\"\u003e#690\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/21614bdb6b30608c8556598677f797e24ac70635\"\u003e\u003ccode\u003e21614bd\u003c/code\u003e\u003c/a\u003e Feat/vortex options (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/689\"\u003e#689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/0517915476d283b92224365bd8659bca10153ffd\"\u003e\u003ccode\u003e0517915\u003c/code\u003e\u003c/a\u003e Feat/fftext (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/684\"\u003e#684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/404f8e5110fa7eaa178d2617ff55eded12cd4de2\"\u003e\u003ccode\u003e404f8e5\u003c/code\u003e\u003c/a\u003e feat/hashregistry (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/687\"\u003e#687\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/56600883e0e9f9b159e9c7000b94e76185ec3d0d\"\u003e\u003ccode\u003e5660088\u003c/code\u003e\u003c/a\u003e fix: Eisenstein Half-GCD convergence (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/1873045cbd7d0e690a74c0c30c4a00335776de5f\"\u003e\u003ccode\u003e1873045\u003c/code\u003e\u003c/a\u003e build(deps): bump golang.org/x/crypto from 0.33.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/consensys/gnark-crypto/compare/v0.12.1...v0.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-jose/go-jose/v4` from 4.1.1 to 4.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-jose/go-jose/releases\"\u003egithub.com/go-jose/go-jose/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eFixes Panic in JWE decryption. See \u003ca href=\"https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\"\u003ehttps://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cp\u003eThis release drops Go 1.23 support as that Go release is no longer supported. With that, we can drop \u003ccode\u003ex/crypto\u003c/code\u003e and no longer have any external dependencies in go-jose outside of the standard library!\u003c/p\u003e\n\u003cp\u003eThis release fixes a bug where a critical b64 header was ignored if in an unprotected header. It is now rejected instead of ignored.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove Go 1.23 support by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/205\"\u003ego-jose/go-jose#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject JWS with an unprotected critical b64 header by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/210\"\u003ego-jose/go-jose#210\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003ego-jose v4.1.2 improves some documentation, errors, and removes the only 3rd-party dependency.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate go-jose documentation by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/198\"\u003ego-jose/go-jose#198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove dependency on testify by \u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove error message for invalid private keys by \u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/195\"\u003ego-jose/go-jose#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJWK unsupported error when unmarshalling by \u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd JSONWebKey type to makeJWERecipient by \u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etestutils/assert: remove True, Nil, NotNil by \u003ca href=\"https://github.com/jsha\"\u003e\u003ccode\u003e@​jsha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/202\"\u003ego-jose/go-jose#202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/0e59876635f3dbf46d7b5e97b52bb75a3f96e7d9\"\u003e\u003ccode\u003e0e59876\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/ddffdbcec8bdadea8e02a20bdf19239878228215\"\u003e\u003ccode\u003eddffdbc\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/213\"\u003e#213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/5348b9a4ba4559d2266b5af89fb5353cd1a5360a\"\u003e\u003ccode\u003e5348b9a\u003c/code\u003e\u003c/a\u003e Reject JWS with an unprotected critical b64 header (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/210\"\u003e#210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9153a5e4549c95e97a84e41e6375dc90eac54241\"\u003e\u003ccode\u003e9153a5e\u003c/code\u003e\u003c/a\u003e Bump actions/setup-python from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/208\"\u003e#208\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/2126e17f8791f6a234e63b2e4e8cb9fac8605c3a\"\u003e\u003ccode\u003e2126e17\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/209\"\u003e#209\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9860c65054c4821d1e7c22200422b04181f58ebc\"\u003e\u003ccode\u003e9860c65\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/206\"\u003e#206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/14239fdb15b88e1c42e41621ef24f1112cf31b5a\"\u003e\u003ccode\u003e14239fd\u003c/code\u003e\u003c/a\u003e Remove Go 1.23 support (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/205\"\u003e#205\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a16e15813482ca5e9a679b7f5bb42ddfae616d43\"\u003e\u003ccode\u003ea16e158\u003c/code\u003e\u003c/a\u003e Update CI to run on Go 1.24 and 1.25 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/204\"\u003e#204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a1565a41aa008ae6545e0f50a636d254de5b4596\"\u003e\u003ccode\u003ea1565a4\u003c/code\u003e\u003c/a\u003e testutils/assert: remove True, Nil, NotNil (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/3a80e136a96e747bf44049414eadc02828df4d33\"\u003e\u003ccode\u003e3a80e13\u003c/code\u003e\u003c/a\u003e jwe: accept non-pointer JSONWebKey in Recipient (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/200\"\u003e#200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.9 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.6\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev1.8.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump the go group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/576\"\u003ehashicorp/go-getter#576\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse %w to wrap error by \u003ca href=\"https://github.com/Ericwww\"\u003e\u003ccode\u003e@​Ericwww\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/475\"\u003ehashicorp/go-getter#475\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/538\"\u003e#538\u003c/a\u003e http file download skipped if headResp.ContentLength is 0 by \u003ca href=\"https://github.com/martijnvdp\"\u003e\u003ccode\u003e@​martijnvdp\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/539\"\u003ehashicorp/go-getter#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix error message capitalization in checksum function by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/578\"\u003ehashicorp/go-getter#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 8 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/577\"\u003ehashicorp/go-getter#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix git url with ambiguous ref by \u003ca href=\"https://github.com/nimasamii\"\u003e\u003ccode\u003e@​nimasamii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/382\"\u003ehashicorp/go-getter#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve compilation errors in get_git_test.go by \u003ca href=\"https://github.com/CreatorHead\"\u003e\u003ccode\u003e@​CreatorHead\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/579\"\u003ehashicorp/go-getter#579\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/582\"\u003ehashicorp/go-getter#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/583\"\u003ehashicorp/go-getter#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest that arbitrary files cannot be checksummed by \u003ca href=\"https://github.com/schmichael\"\u003e\u003ccode\u003e@​schmichael\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/250\"\u003ehashicorp/go-getter#250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump google.golang.org/api from 0.260.0 to 0.262.0 in the go group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/585\"\u003ehashicorp/go-getter#585\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump actions/checkout from 6.0.1 to 6.0.2 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/586\"\u003ehashicorp/go-getter#586\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/588\"\u003ehashicorp/go-getter#588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump actions/cache from 5.0.2 to 5.0.3 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/589\"\u003ehashicorp/go-getter#589\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump aws-actions/configure-aws-credentials from 5.1.1 to 6.0.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/592\"\u003ehashicorp/go-getter#592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump google.golang.org/api from 0.264.0 to 0.265.0 in the go group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/591\"\u003ehashicorp/go-getter#591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 5 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/593\"\u003ehashicorp/go-getter#593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-6310 - CRT Onboarding by \u003ca href=\"https://github.com/nasareeny\"\u003e\u003ccode\u003e@​nasareeny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/584\"\u003ehashicorp/go-getter#584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix crt build path by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/594\"\u003ehashicorp/go-getter#594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/596\"\u003ehashicorp/go-getter#596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove checkout action from set-product-version job by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/598\"\u003ehashicorp/go-getter#598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/595\"\u003ehashicorp/go-getter#595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): upgrade go.opentelemetry.io/otel/sdk to v1.40.0 (GO-2026-4394) by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/599\"\u003ehashicorp/go-getter#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare go-getter for v1.8.5 release by \u003ca href=\"https://github.com/nasareeny\"\u003e\u003ccode\u003e@​nasareeny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/597\"\u003ehashicorp/go-getter#597\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/600\"\u003ehashicorp/go-getter#600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esec: bump go and xrepos + redact aws tokens in url by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/604\"\u003ehashicorp/go-getter#604\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNOTES:\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eBinary Distribution Update: To streamline our release process and align with other HashiCorp tools, all release binaries will now be published exclusively to the official HashiCorp \u003ca href=\"https://releases.hashicorp.com/go-getter/\"\u003erelease\u003c/a\u003e site. We will no longer attach release assets to GitHub Releases.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Ericwww\"\u003e\u003ccode\u003e@​Ericwww\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/475\"\u003ehashicorp/go-getter#475\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/martijnvdp\"\u003e\u003ccode\u003e@​martijnvdp\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/539\"\u003ehashicorp/go-getter#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nimasamii\"\u003e\u003ccode\u003e@​nimasamii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/382\"\u003ehashicorp/go-getter#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nasareeny\"\u003e\u003ccode\u003e@​nasareeny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/584\"\u003ehashicorp/go-getter#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.4...v1.8.5\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.4...v1.8.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d23bff48fb87c956bb507a03d35a63ee45470e34\"\u003e\u003ccode\u003ed23bff4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/608\"\u003e#608\u003c/a\u003e from hashicorp/dependabot/go_modules/go-security-9c51...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/2c4aba8e5286c18bc66358236454a3e3b0aa7421\"\u003e\u003ccode\u003e2c4aba8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/613\"\u003e#613\u003c/a\u003e from hashicorp/pull/v1.8.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/fe61ed9454b818721d81328d7e880fc2ed2c8d15\"\u003e\u003ccode\u003efe61ed9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/611\"\u003e#611\u003c/a\u003e from hashicorp/SECVULN-41053\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d53365612c5250f7df8d586ba3be70fbd42e613b\"\u003e\u003ccode\u003ed533656\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/606\"\u003e#606\u003c/a\u003e from hashicorp/pull/CRT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/388f23d7d40f1f1e1a9f5b40ee5590c08154cd6d\"\u003e\u003ccode\u003e388f23d\u003c/code\u003e\u003c/a\u003e Additional test for local branch and head\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/b7ceaa59b11a203c14cf58e5fcaa8f169c0ced6e\"\u003e\u003ccode\u003eb7ceaa5\u003c/code\u003e\u003c/a\u003e harden checkout ref handling and added regression tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/769cc14fdb0df5ac548f4ead1193b5c40460f11e\"\u003e\u003ccode\u003e769cc14\u003c/code\u003e\u003c/a\u003e Release version bump up\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/6086a6a1f6347f735401c26429d9a0e14ad29444\"\u003e\u003ccode\u003e6086a6a\u003c/code\u003e\u003c/a\u003e Review Comments Addressed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e02063cd28e97bb8a23a63e72e2a4a4ab6e982cf\"\u003e\u003ccode\u003ee02063c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;SECVULN Fix for git checkout argument injection enables arbitrary fil...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c93084dc4306b2c49c54fe6fbfbe79c98956e5f8\"\u003e\u003ccode\u003ec93084d\u003c/code\u003e\u003c/a\u003e [chore] : Bump google.golang.org/grpc\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.9...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7eee8a8a405163554a9accec7b9402ee21400769\"\u003e\u003ccode\u003e7eee8a8\u003c/code\u003e\u003c/a\u003e v9.5.15: release notes and formatting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/235be8df4f86c943c154112d1abb3c951c86babb\"\u003e\u003ccode\u003e235be8d\u003c/code\u003e\u003c/a\u003e lzma: Fix default for ReaderConfig.DictCap\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.37.0 to 1.42.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eErr\u003c/code\u003e and \u003ccode\u003eSetErr\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e to attach an error and set record exception attributes in \u003ccode\u003ego.opentelemetry.io/otel/log/sdk\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7924\"\u003e#7924\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eTracerProvider.ForceFlush\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e joins errors together and continues iteration through SpanProcessors as opposed to returning the first encountered error without attempting exports on subsequent SpanProcessors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7856\"\u003e#7856\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7931\"\u003e#7931\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix semconv v1.39.0 generated metric helpers skipping required attributes when extra attributes were empty. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7964\"\u003e#7964\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePreserve W3C TraceFlags bitmask (including the random Trace ID flag) during trace context extraction and injection in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7834\"\u003e#7834\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for [Go 1.24]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7984\"\u003e#7984\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/a3941ff595235e952774f0a581c7655bec93b0ab\"\u003e\u003ccode\u003ea3941ff\u003c/code\u003e\u003c/a\u003e Release v1.42.0/v0.64.0/v0.18.0/v0.0.16 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8006\"\u003e#8006\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/6059c47bc64a1329618d8c06d31098cd1eee7750\"\u003e\u003ccode\u003e6059c47\u003c/code\u003e\u003c/a\u003e chore(deps): update golang.org/x/telemetry digest to e526e8a (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8010\"\u003e#8010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/44c7edf896e0672b8b522700dcb9d56011349897\"\u003e\u003ccode\u003e44c7edf\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mgechev/revive to v1.15.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8009\"\u003e#8009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/de5fb3ad101bc8de082bcaae93d4129ce467ad8c\"\u003e\u003ccode\u003ede5fb3a\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.79.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8007\"\u003e#8007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0b82ded815a410d3bc0fc8b30802fd3a41059db3\"\u003e\u003ccode\u003e0b82ded\u003c/code\u003e\u003c/a\u003e chore(deps): update codspeedhq/action action to v4.11.1 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8001\"\u003e#8001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/aa3660f77e65ad0873ae7f06084bfc9ddc62948b\"\u003e\u003ccode\u003eaa3660f\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.6 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8004\"\u003e#8004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9be8c92a131a085c8b33b32bf19b3e16c413e2ae\"\u003e\u003ccode\u003e9be8c92\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency codespell to v2.4.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8003\"\u003e#8003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c9d20155fcfa8d7dad13d1358fcdf63989113693\"\u003e\u003ccode\u003ec9d2015\u003c/code\u003e\u003c/a\u003e log: add error field to Record and make SDK to emit exception attributes (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7924\"\u003e#7924\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/fdd1320c39ebc4b8e976f58e0af55965f25411c7\"\u003e\u003ccode\u003efdd1320\u003c/code\u003e\u003c/a\u003e TracerProvider ForceFlush() Error Fix (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7856\"\u003e#7856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/78f99042e2b038c4c86c5fa1ffd0609ec498c1db\"\u003e\u003ccode\u003e78f9904\u003c/code\u003e\u003c/a\u003e chore(deps): update golang.org/x/telemetry digest to 18da590 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8000\"\u003e#8000\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.37.0...v1.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.41.0 to 0.49.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/982eaa62dfb7273603b97fc1835561450096f3bd\"\u003e\u003ccode\u003e982eaa6\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/159944f128e9b3fdeb5a5b9b102a961904601a87\"\u003e\u003ccode\u003e159944f\u003c/code\u003e\u003c/a\u003e ssh,acme: clean up tautological/impossible nil conditions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a408498e55412f2ae2a058336f78889fb1ba6115\"\u003e\u003ccode\u003ea408498\u003c/code\u003e\u003c/a\u003e acme: only require prompt if server has terms of service\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/cab0f718548e8a858701b7b48161f44748532f58\"\u003e\u003ccode\u003ecab0f71\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.25.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2f26647a795e74e712b3aebc2655bca60b2686f9\"\u003e\u003ccode\u003e2f26647\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e08b06753d6a72f1fe375b6e0fefefb39917c165\"\u003e\u003ccode\u003ee08b067\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7d0074ccc6f17acbf2ebb10db06d492e08f887dc\"\u003e\u003ccode\u003e7d0074c\u003c/code\u003e\u003c/a\u003e scrypt: fix panic on parameters \u0026lt;= 0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/506e022208b864bc3c9c4a416fe56be75d10ad24\"\u003e\u003ccode\u003e506e022\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7dacc380ba001e8fe7c3c7a46bf3cbdaa5064df9\"\u003e\u003ccode\u003e7dacc38\u003c/code\u003e\u003c/a\u003e chacha20poly1305: error out in fips140=only mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.41.0...v0.49.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.75.0 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.75.0...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/MANTRA-Chain/mantrachain/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/MANTRA-Chain/mantrachain/pull/635","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/MANTRA-Chain%2Fmantrachain/issues/635","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/635/packages"},{"uuid":"4278421595","node_id":"PR_kwDORlDdpM7TGhO7","number":106,"state":"closed","title":"chore(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14 in /gtfsAggregation in the go_modules group across 1 directory","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-16T23:28:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-16T20:42:27.000Z","updated_at":"2026-04-16T23:28:21.000Z","time_to_close":9952,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":"/gtfsAggregation in the go_modules group across 1 directory","ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the /gtfsAggregation directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/ulikunitz/xz\u0026package-manager=go_modules\u0026previous-version=0.5.12\u0026new-version=0.5.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mattiaskvist/forseningskartan/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/mattiaskvist/forseningskartan/pull/106","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mattiaskvist%2Fforseningskartan/issues/106","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/106/packages"},{"uuid":"4265120353","node_id":"PR_kwDONpEgrc7SdXFs","number":1,"state":"open","title":"Bump the go_modules group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-14T22:40:02.000Z","updated_at":"2026-04-14T22:44:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":7,"packages":[{"name":"github.com/eclipse/paho.mqtt.golang","old_version":"1.4.3","new_version":"1.5.1","repository_url":"https://github.com/eclipse/paho.mqtt.golang"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.9","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"golang.org/x/image","old_version":"0.11.0","new_version":"0.38.0","repository_url":"https://github.com/golang/image"},{"name":"golang.org/x/oauth2","old_version":"0.11.0","new_version":"0.27.0","repository_url":"https://github.com/golang/oauth2"},{"name":"google.golang.org/protobuf","old_version":"1.31.0","new_version":"1.33.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/eclipse/paho.mqtt.golang](https://github.com/eclipse/paho.mqtt.golang) | `1.4.3` | `1.5.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.9` | `0.5.14` |\n| [golang.org/x/image](https://github.com/golang/image) | `0.11.0` | `0.38.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.11.0` | `0.27.0` |\n| google.golang.org/protobuf | `1.31.0` | `1.33.0` |\n\n\nUpdates `github.com/eclipse/paho.mqtt.golang` from 1.4.3 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/eclipse/paho.mqtt.golang/releases\"\u003egithub.com/eclipse/paho.mqtt.golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.1\u003c/h2\u003e\n\u003cp\u003eThis is a minor release incorporating changes made in the 14 months since v1.5.0 (including updating dependencies, and raising the Go version to 1.24). The changes are relatively minor but address a potential security issue (\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-10543\"\u003eCVE-2025-10543\u003c/a\u003e), possible panic, enable users to better monitor the connection status, and incorporate a few optimisations.\u003c/p\u003e\n\u003cp\u003eThanks to those who have provided fixes/enhancements included in this release!\u003c/p\u003e\n\u003cp\u003eSpecial thanks to Paul Gerste at \u003ca href=\"https://www.sonarsource.com/\"\u003eSonar\u003c/a\u003e for reporting issue \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/730\"\u003e#730\u003c/a\u003e via the Eclipse security team (fix was implemented in PR \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/714\"\u003e#714\u003c/a\u003e in May, github issue created just prior to this release). This issue arose where a topic \u0026gt; 65535 bytes was passed to the \u003ccode\u003ePublish\u003c/code\u003e function, due to the way the data was encoded the topic could leak into the message body. Please see issue \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/730\"\u003e#730\u003c/a\u003e or \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-10543\"\u003eCVE-2025-10543\u003c/a\u003e for further details.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdating go dependencies from pub and sub into the containers before building by \u003ca href=\"https://github.com/JefJrFigueiredo\"\u003e\u003ccode\u003e@​JefJrFigueiredo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/691\"\u003eeclipse-paho/paho.mqtt.golang#691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize TCP connection logic by \u003ca href=\"https://github.com/geekeryy\"\u003e\u003ccode\u003e@​geekeryy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/713\"\u003eeclipse-paho/paho.mqtt.golang#713\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFields over 65535 bytes not encoded correctly by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/714\"\u003eeclipse-paho/paho.mqtt.golang#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce slice allocations in route dispatch  by \u003ca href=\"https://github.com/alespour\"\u003e\u003ccode\u003e@​alespour\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/710\"\u003eeclipse-paho/paho.mqtt.golang#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a ConnectionNotificationHandler by \u003ca href=\"https://github.com/RangelReale\"\u003e\u003ccode\u003e@​RangelReale\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/727\"\u003eeclipse-paho/paho.mqtt.golang#727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePotential panic when using manual ACK by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/729\"\u003eeclipse-paho/paho.mqtt.golang#729\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/compare/v1.5.0...v1.5.1\"\u003ehttps://github.com/eclipse-paho/paho.mqtt.golang/compare/v1.5.0...v1.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.0\u003c/h2\u003e\n\u003cp\u003eIn the year since the release of v1.4.3 the majority of changes have been small incremental improvements/fixes. One notable change is that Go v1.20+ is now required (due to PR \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/646\"\u003e#646\u003c/a\u003e).\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWrap connection network errors by \u003ca href=\"https://github.com/adriansmares\"\u003e\u003ccode\u003e@​adriansmares\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/646\"\u003eeclipse/paho.mqtt.golang#646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify use of token.WaitTimeout by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/659\"\u003eeclipse/paho.mqtt.golang#659\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (\u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/661\"\u003e#661\u003c/a\u003e): Add NewClientOptionsReader for mocking purposes. by \u003ca href=\"https://github.com/avmunm\"\u003e\u003ccode\u003e@​avmunm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/662\"\u003eeclipse/paho.mqtt.golang#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: fix keep-alive timeouts on small intervals by \u003ca href=\"https://github.com/lefinal\"\u003e\u003ccode\u003e@​lefinal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/667\"\u003eeclipse/paho.mqtt.golang#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace the time.After with the timer for efficiency. by \u003ca href=\"https://github.com/DVasselli\"\u003e\u003ccode\u003e@​DVasselli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/671\"\u003eeclipse/paho.mqtt.golang#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: deprecation warnings for ioutil by \u003ca href=\"https://github.com/vruge\"\u003e\u003ccode\u003e@​vruge\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/665\"\u003eeclipse/paho.mqtt.golang#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: issue 675：goroutine leak when connectionUp(true) return error by \u003ca href=\"https://github.com/kiqi007\"\u003e\u003ccode\u003e@​kiqi007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/678\"\u003eeclipse/paho.mqtt.golang#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/683\"\u003eeclipse/paho.mqtt.golang#683\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/adriansmares\"\u003e\u003ccode\u003e@​adriansmares\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/646\"\u003eeclipse/paho.mqtt.golang#646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/avmunm\"\u003e\u003ccode\u003e@​avmunm\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/662\"\u003eeclipse/paho.mqtt.golang#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lefinal\"\u003e\u003ccode\u003e@​lefinal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/667\"\u003eeclipse/paho.mqtt.golang#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DVasselli\"\u003e\u003ccode\u003e@​DVasselli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/671\"\u003eeclipse/paho.mqtt.golang#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vruge\"\u003e\u003ccode\u003e@​vruge\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/665\"\u003eeclipse/paho.mqtt.golang#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kiqi007\"\u003e\u003ccode\u003e@​kiqi007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/678\"\u003eeclipse/paho.mqtt.golang#678\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/eclipse/paho.mqtt.golang/compare/v1.4.3...v1.5.0\"\u003ehttps://github.com/eclipse/paho.mqtt.golang/compare/v1.4.3...v1.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/b30523793968e6b7a7b1f76338a58c4fe9755299\"\u003e\u003ccode\u003eb305237\u003c/code\u003e\u003c/a\u003e Update dependencies in docker examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/35ee03d8496f3256cc2bf7af15fea56e21c29c96\"\u003e\u003ccode\u003e35ee03d\u003c/code\u003e\u003c/a\u003e Potential panic when using manual ACK\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/433bd22ae6ac92daf00d575def72e425bc21e39f\"\u003e\u003ccode\u003e433bd22\u003c/code\u003e\u003c/a\u003e address data race in test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/4debe3a76a5aa8f27a2616e2d4e3fc53be0dc788\"\u003e\u003ccode\u003e4debe3a\u003c/code\u003e\u003c/a\u003e Potential panic when using manual ACK\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/601453b38642642382165ab9689b20cd025d102a\"\u003e\u003ccode\u003e601453b\u003c/code\u003e\u003c/a\u003e Resolve issues in fvt_client_test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/439e2ab4c07d55c124fe03e8bb6273b93c88b61a\"\u003e\u003ccode\u003e439e2ab\u003c/code\u003e\u003c/a\u003e Dependency update (also rise Go version to 1.24)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/d27659335abe44a2838ac4c8e807dd66ee208ed0\"\u003e\u003ccode\u003ed276593\u003c/code\u003e\u003c/a\u003e ConnectionNotificationHandler - generic callback for all types of connection ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/8a350a9cff7682fc5d8d741b6e9c5b7def7b2661\"\u003e\u003ccode\u003e8a350a9\u003c/code\u003e\u003c/a\u003e notifications\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/5620c5ed09ab99bde96402f052e548fd95d4e0c3\"\u003e\u003ccode\u003e5620c5e\u003c/code\u003e\u003c/a\u003e notifications\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/45048ccc79f333b4ac41ab1723aa94d63fb5ed01\"\u003e\u003ccode\u003e45048cc\u003c/code\u003e\u003c/a\u003e notifications\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/eclipse/paho.mqtt.golang/compare/v1.4.3...v1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.9 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/9d122a61c181b044e6b8b9c09979dfe7c513e2db\"\u003e\u003ccode\u003e9d122a6\u003c/code\u003e\u003c/a\u003e release version v0.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4ce6f08566c86bf66a9bc1c2f811336ae2e462c0\"\u003e\u003ccode\u003e4ce6f08\u003c/code\u003e\u003c/a\u003e lzma: fix handling of small dictionary sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/0b7c695d23f84aa7e968bbcaa1980847683d909a\"\u003e\u003ccode\u003e0b7c695\u003c/code\u003e\u003c/a\u003e xz: add reader benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/553507794087117cd9bdc95c924c1c5611bd991a\"\u003e\u003ccode\u003e5535077\u003c/code\u003e\u003c/a\u003e xz: add compression reate to Writer benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/886dc9acde193dec013d4812372011c64f6efbc2\"\u003e\u003ccode\u003e886dc9a\u003c/code\u003e\u003c/a\u003e xz: add benchmark for Writer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.9...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.12.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/5307a0ce6db8057c8d7c4378dc4bd715b4985ba1\"\u003e\u003ccode\u003e5307a0c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/9d779377cff7ff1f58520cc044fb90b10ddfc561\"\u003e\u003ccode\u003e9d77937\u003c/code\u003e\u003c/a\u003e acme: include order problem in OrderError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8f580defa01dec23898d3cd27f6369cdcc62f71f\"\u003e\u003ccode\u003e8f580de\u003c/code\u003e\u003c/a\u003e ssh: remove Go 1.24 build tag for ML-KEM kex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a4d1237429d6056ef197b0b911b8b9d7dca8ecf6\"\u003e\u003ccode\u003ea4d1237\u003c/code\u003e\u003c/a\u003e ssh/knownhosts: improve IPv6 support in Normalize\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b8d8dae13d7dda8706ca2ab98934ad404aacae22\"\u003e\u003ccode\u003eb8d8dae\u003c/code\u003e\u003c/a\u003e curve25519: include potential fips140=only error in panic message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f5a2eabcab987dc84f30d5479ed5c5605b5de634\"\u003e\u003ccode\u003ef5a2eab\u003c/code\u003e\u003c/a\u003e ssh: use curve25519.X25519 instead of curve25519.ScalarMult\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/44ecf3af9978b32529ce689a6964bd557c79aa1c\"\u003e\u003ccode\u003e44ecf3a\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.24.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/ef5341b70697ceb55f904384bd982587224e8b0c\"\u003e\u003ccode\u003eef5341b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b999374650442ee37e9bbd97d6a11ad7ed999b98\"\u003e\u003ccode\u003eb999374\u003c/code\u003e\u003c/a\u003e acme: fix pebble subprocess output data race\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c247dead11de7671a21a6c5169555e2aa5313caa\"\u003e\u003ccode\u003ec247dea\u003c/code\u003e\u003c/a\u003e x509roots/fallback: store bundle certs directly in DER\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.12.0...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/image` from 0.11.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/23ae9ed61c1d3343fb95015810f62dcbf444976e\"\u003e\u003ccode\u003e23ae9ed\u003c/code\u003e\u003c/a\u003e tiff: cap buffer growth to prevent OOM from malicious IFD offset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e589e60f29d0bbbf6400e250e024f93cbc4961ee\"\u003e\u003ccode\u003ee589e60\u003c/code\u003e\u003c/a\u003e webp: allow VP8L + VP8X(with alpha)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/fe7d73de74b8a1ad508c93cfcb245d44579163ff\"\u003e\u003ccode\u003efe7d73d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e3d762b1d37ed96e757e3bc0bfb44f7455589df3\"\u003e\u003ccode\u003ee3d762b\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.25.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/833c6ed987962feaa3ec2624d8655421b25e2e0e\"\u003e\u003ccode\u003e833c6ed\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/bc7fe0b43a01586e7ca7c087a2e8a625e8397dcb\"\u003e\u003ccode\u003ebc7fe0b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/c53c97f4ed88d55fafe963ee6e93cb357663d650\"\u003e\u003ccode\u003ec53c97f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9032ff7c7b86f42b9bebdf6133191648224aecc0\"\u003e\u003ccode\u003e9032ff7\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9c9d08c65c08567c997eccc8bde52fcc9369bea6\"\u003e\u003ccode\u003e9c9d08c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/742b1b756d98a0c48b1fcf464a0c63fa50e1aa6b\"\u003e\u003ccode\u003e742b1b7\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/image/compare/v0.11.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.14.0 to 0.44.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/3b23d576ea72235a3fef8f157eb5ab76e65854a8\"\u003e\u003ccode\u003e3b23d57\u003c/code\u003e\u003c/a\u003e http2: fix race condition when disabling goroutine debugging for one test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/87410502ff26318c9bd1be1c9a09e0a681774dcf\"\u003e\u003ccode\u003e8741050\u003c/code\u003e\u003c/a\u003e http2: simplify TestServer_Push_RejectAfterGoAway\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/96e405cac15ef9a113f2b30d3f3f8a216234f09c\"\u003e\u003ccode\u003e96e405c\u003c/code\u003e\u003c/a\u003e http2: modernize TestTransportRoundtripCloseOnWriteError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6dc6880bcd7edc82184626a363d26d65bc55c195\"\u003e\u003ccode\u003e6dc6880\u003c/code\u003e\u003c/a\u003e http2: simplify ClientConn Close and Shutdown tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4e2915b652483bfc9831c080e40c679e42616f03\"\u003e\u003ccode\u003e4e2915b\u003c/code\u003e\u003c/a\u003e http2: modernize TestTransportAllocationsAfterResponseBodyClose\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/30b0e78859f03d66b2e275870d5d37455d2f0fb0\"\u003e\u003ccode\u003e30b0e78\u003c/code\u003e\u003c/a\u003e http2: modernize TestRoundTripDoesntConsumeRequestBodyEarly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b9acd777f1852925992bdeaa623de8cc86efa4eb\"\u003e\u003ccode\u003eb9acd77\u003c/code\u003e\u003c/a\u003e http2: speed up TestTransportFlowControl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5153f4db3143a3be6ce383b512ba7a4c0f935211\"\u003e\u003ccode\u003e5153f4d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9338bdd9eeddfeab331342288acfef2293474490\"\u003e\u003ccode\u003e9338bdd\u003c/code\u003e\u003c/a\u003e http2: speed up TestTransportHandlerBodyClose\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6b200364a6614a5cf8d360d854e998c1dc739f24\"\u003e\u003ccode\u003e6b20036\u003c/code\u003e\u003c/a\u003e http2: add synchronous handler support to serverTester\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.14.0...v0.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.11.0 to 0.27.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/681b4d8edca1bcfea5bce685d77ea7b82ed3e7b3\"\u003e\u003ccode\u003e681b4d8\u003c/code\u003e\u003c/a\u003e jws: split token into fixed number of parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3f78298beea38fb76a3fbca33e3056f4b7eb5502\"\u003e\u003ccode\u003e3f78298\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.23.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/109dabf9017129171d1807e485ca5633ecd095ac\"\u003e\u003ccode\u003e109dabf\u003c/code\u003e\u003c/a\u003e endpoints: add links/provider for Discord\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/ac571fa341c2a2b979d2b2c8341fd24767ef5d47\"\u003e\u003ccode\u003eac571fa\u003c/code\u003e\u003c/a\u003e oauth2: fix docs for Config.DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/314ee5b92bf23c4973aa8e61eba3ff458e80eef2\"\u003e\u003ccode\u003e314ee5b\u003c/code\u003e\u003c/a\u003e endpoints: add patreon endpoint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/b9c813be7d0ec3262d46deb8677ba5cda93d95ec\"\u003e\u003ccode\u003eb9c813b\u003c/code\u003e\u003c/a\u003e google: add warning about externally-provided credentials\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/49a531d12a9ad6fa9f5a070d577ac752ada772c9\"\u003e\u003ccode\u003e49a531d\u003c/code\u003e\u003c/a\u003e all: make method and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/22134a41033e44c2cd074106770ab5b7ca910d15\"\u003e\u003ccode\u003e22134a4\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3e6480915d39dd1a80fa460e56413857f02cc1b9\"\u003e\u003ccode\u003e3e64809\u003c/code\u003e\u003c/a\u003e x/oauth2: add Token.ExpiresIn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/16a9973a41c72ea3e252e9c14be34fcaa2928211\"\u003e\u003ccode\u003e16a9973\u003c/code\u003e\u003c/a\u003e jwt: rename example to avoid vet error\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.11.0...v0.27.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/protobuf` from 1.31.0 to 1.33.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/loveyou001/GoSungrow/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrade Go to 1.25.0 and update core dependencies for security and stability, including MQTT, compression, x/*, and protobuf. This reduces known CVE exposure and aligns the project with current Go library APIs.\n\n- **Dependencies**\n  - Require Go 1.25.0 in `go.mod`.\n  - Update `github.com/eclipse/paho.mqtt.golang` to 1.5.1 (includes CVE-2025-10543 fix and stability improvements).\n  - Update `golang.org/x/*`: `crypto` 0.42.0, `image` 0.38.0, `net` 0.44.0, `oauth2` 0.27.0.\n  - Update `github.com/ulikunitz/xz` to 0.5.14 (security), `google.golang.org/protobuf` to 1.33.0, `github.com/gorilla/websocket` to 1.5.3.\n  - Add/pin `github.com/MickMake/GoUnify` subpackages required by the app.\n\n- **Migration**\n  - Use Go 1.25+ locally and in CI.\n  - Rebuild and run tests; no code changes expected.\n\n\u003csup\u003eWritten for commit 1cf8a627e435730ac91e0b8d8b420ff643887d7c. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/loveyou001/GoSungrow/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/loveyou001%2FGoSungrow/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4227111316","node_id":"PR_kwDOOguN787Q6ciV","number":5,"state":"closed","title":"Bump the go_modules group across 5 directories with 9 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-10T18:23:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T19:29:42.000Z","updated_at":"2026-04-10T18:23:22.000Z","time_to_close":168819,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":9,"packages":[{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.31.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"golang.org/x/crypto","old_version":"0.36.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"google.golang.org/grpc","old_version":"1.69.4","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/antchfx/xpath","old_version":"1.1.10","new_version":"1.3.6","repository_url":"https://github.com/antchfx/xpath"},{"name":"github.com/cli/go-gh/v2","old_version":"2.11.2","new_version":"2.12.1","repository_url":"https://github.com/cli/go-gh"},{"name":"github.com/cloudflare/circl","old_version":"1.4.0","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.10","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp","old_version":"1.19.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.7.9` |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.31.0` | `1.43.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.36.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.69.4` | `1.79.3` |\n| [github.com/antchfx/xpath](https://github.com/antchfx/xpath) | `1.1.10` | `1.3.6` |\n| [github.com/cli/go-gh/v2](https://github.com/cli/go-gh) | `2.11.2` | `2.12.1` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.4.0` | `1.6.3` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.10` | `0.5.14` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) | `1.19.0` | `1.43.0` |\n\nBumps the go_modules group with 1 update in the /internal/backend/remote-state/azure directory: [golang.org/x/crypto](https://github.com/golang/crypto).\nBumps the go_modules group with 2 updates in the /internal/backend/remote-state/gcs directory: [golang.org/x/crypto](https://github.com/golang/crypto) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /internal/backend/remote-state/kubernetes directory: [golang.org/x/crypto](https://github.com/golang/crypto).\nBumps the go_modules group with 1 update in the /internal/backend/remote-state/oci directory: [golang.org/x/crypto](https://github.com/golang/crypto).\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.31.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.31.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.69.4 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.69.4...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/antchfx/xpath` from 1.1.10 to 1.3.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/antchfx/xpath/releases\"\u003egithub.com/antchfx/xpath's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.6\u003c/h2\u003e\n\u003cp\u003eMerged PR:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/120\"\u003e#120\u003c/a\u003e(\u003ca href=\"https://github.com/mislav\"\u003e\u003ccode\u003e@​mislav\u003c/code\u003e\u003c/a\u003e) - Fix \u003ccode\u003elast()\u003c/code\u003e predicate on grouped expr.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/121\"\u003e#121\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.5\u003c/h2\u003e\n\u003cp\u003eMerged PR:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/117\"\u003e#117\u003c/a\u003e(\u003ca href=\"https://github.com/mislav\"\u003e\u003ccode\u003e@​mislav\u003c/code\u003e\u003c/a\u003e）- fix \u003ccode\u003eancestor::\u003c/code\u003e axes with position predicate.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/113\"\u003e#113\u003c/a\u003e - (fix \u003ccode\u003estring()\u003c/code\u003e function)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.4\u003c/h2\u003e\n\u003cp\u003eMerged PR:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/107\"\u003e#107\u003c/a\u003e(\u003ca href=\"https://github.com/Mrflatt\"\u003e\u003ccode\u003e@​Mrflatt\u003c/code\u003e\u003c/a\u003e) - supports Regexp feature in \u003ccode\u003ereplace()\u003c/code\u003e function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/111\"\u003e#111\u003c/a\u003e(\u003ca href=\"https://github.com/wjc4\"\u003e\u003ccode\u003e@​wjc4\u003c/code\u003e\u003c/a\u003e) - Improve \u003ccode\u003egetHashCode\u003c/code\u003e performance\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/109\"\u003e#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.3\u003c/h2\u003e\n\u003cp\u003efix non-English predicate query \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/106\"\u003e#106\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.3.2\u003c/h2\u003e\n\u003cp\u003eNew Features:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSupports Unicode chars for Non-English (PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/100\"\u003e#100\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eBug Fixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/101\"\u003e#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/102\"\u003e#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/104\"\u003e#104\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMerged PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/97\"\u003e#97\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAllows node-set numeric operator \u003ccode\u003e+\u003c/code\u003e, \u003ccode\u003e-\u003c/code\u003e, \u003ccode\u003emod()\u003c/code\u003e.\u003ca href=\"https://github.com/antchfx/xpath/commit/4b4638b370e898a9d10709464b8cd460b7dcfd0c\"\u003ehttps://github.com/antchfx/xpath/commit/4b4638b370e898a9d10709464b8cd460b7dcfd0c\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/98\"\u003e#98\u003c/a\u003e, Remove the duplicate element filter \u003ca href=\"https://github.com/antchfx/xpath/commit/5481aef473ee298d297387f5b69e2768df09e0c4\"\u003ehttps://github.com/antchfx/xpath/commit/5481aef473ee298d297387f5b69e2768df09e0c4\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/93\"\u003e#93\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew features:\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/afd4762cc342af56345a3fb4002a59281fcab494\"\u003e\u003ccode\u003eafd4762\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/121\"\u003e#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/a8ced8f559cd68fc4aedfc87f21599d1190c0852\"\u003e\u003ccode\u003ea8ced8f\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/120\"\u003e#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/c92c3ebebbdd67f715161810f97ecfbcaa47921e\"\u003e\u003ccode\u003ec92c3eb\u003c/code\u003e\u003c/a\u003e Fix last() predicate on grouped expressions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/3cbab9750ea36cbae6f967ebbf29b9eda0e841bf\"\u003e\u003ccode\u003e3cbab97\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/119\"\u003e#119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/02c01b0b4051e7edd1bf40f3d595cc9143936aaa\"\u003e\u003ccode\u003e02c01b0\u003c/code\u003e\u003c/a\u003e Fix chained predicates on ancestor axis\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/511abd57bc74e9644fe27f4e52b559065e686e92\"\u003e\u003ccode\u003e511abd5\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/117\"\u003e#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/060b15493444a0e6c5a232022516e434818f7391\"\u003e\u003ccode\u003e060b154\u003c/code\u003e\u003c/a\u003e Fix positional predicate for the \u0026quot;ancestor\u0026quot; axis\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/8d50c252d867285812177ffd3ff0924104ffb1eb\"\u003e\u003ccode\u003e8d50c25\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/112\"\u003e#112\u003c/a\u003e，\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/113\"\u003e#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/b9e198da9fb170a229c9c7e27d52e1a350636f4c\"\u003e\u003ccode\u003eb9e198d\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/111\"\u003e#111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/fcb882bece30fe7d4d8f5069fed13f95a726e62f\"\u003e\u003ccode\u003efcb882b\u003c/code\u003e\u003c/a\u003e improve getHashCode by removing fmt.Sprintf\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/antchfx/xpath/compare/v1.1.10...v1.3.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cli/go-gh/v2` from 2.11.2 to 2.12.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cli/go-gh/releases\"\u003egithub.com/cli/go-gh/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.12.1\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cp\u003eA security vulnerability has been identified in \u003ccode\u003ego-gh\u003c/code\u003e where an attacker-controlled GitHub Enterprise Server could result in executing arbitrary commands on a user's machine by replacing HTTP URLs provided by GitHub with local file paths for browsing.\u003c/p\u003e\n\u003cp\u003eFor more information, see GHSA-g9f5-x53j-h563\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cli/go-gh/compare/v2.12.0...v2.12.1\"\u003ehttps://github.com/cli/go-gh/compare/v2.12.0...v2.12.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.12.0\u003c/h2\u003e\n\u003ch2\u003eIntroducing experimental support for rendering markdown with customizable, accessible colors\u003c/h2\u003e\n\u003cp\u003eUsers with low vision or color blindness rely upon the terminal's ability to change how colors appear, however this requires CLIs to use a limited set of colors:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eThe \u003ca href=\"https://pkg.go.dev/github.com/cli/go-gh/v2/pkg/markdown\"\u003emarkdown rendered\u003c/a\u003e for GitHub CLI and extensions defaults to \u003ca href=\"https://en.wikipedia.org/wiki/ANSI_escape_code#8-bit\"\u003e8-bit colors\u003c/a\u003e that users cannot easily customize in this way.\u003c/p\u003e\n\u003cp\u003eNow, users can force rendered markdown to use customizable, accessible colors by doing one of the following:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003e\n\u003cp\u003eSet \u003ccode\u003eGH_ACCESSIBLE_COLORS\u003c/code\u003e environment variable to a truthy value\u003c/p\u003e\n\u003cpre lang=\"shell\"\u003e\u003ccode\u003eexport GH_ACCESSIBLE_COLORS=1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSet \u003ccode\u003eaccessible_colors\u003c/code\u003e configuration setting\u003c/p\u003e\n\u003cpre lang=\"shell\"\u003e\u003ccode\u003egh config set accessible_colors enabled\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/user-attachments/assets/ccf829c5-6987-453b-a72a-51f452a80d26\"\u003ehttps://github.com/user-attachments/assets/ccf829c5-6987-453b-a72a-51f452a80d26\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eUsers with a \u003ca href=\"https://github.com/charmbracelet/glamour?tab=readme-ov-file#styles\"\u003ecustom\u003ccode\u003echarmbracelet/glamour\u003c/code\u003e style\u003c/a\u003e will continue to have markdown rendered using it.\u003c/p\u003e\n\u003cp\u003eFor more information, see \u003ca href=\"https://redirect.github.com/cli/go-gh/pull/186\"\u003ecli/go-gh#186\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eIntroducing new experimental \u003ccode\u003egithub.com/cli/go-gh/v2/pkg/x\u003c/code\u003e package\u003c/h2\u003e\n\u003cp\u003e\u003ccode\u003ecli/go-gh\u003c/code\u003e provides capabilities used by both the GitHub CLI and CLI extensions.  Some of these packages are stable, however some like the new experimental markdown support are not.\u003c/p\u003e\n\u003cp\u003eThe \u003ca href=\"https://pkg.go.dev/github.com/cli/go-gh/v2/pkg/x\"\u003e\u003ccode\u003egithub.com/cli/go-gh/v2/pkg/x\u003c/code\u003e package\u003c/a\u003e has been created to contain experimental features that are subject to change without notice.\u003c/p\u003e\n\u003ch2\u003eIntroducing new string matcher functions for Go templates\u003c/h2\u003e\n\u003cp\u003eThe following string matcher functions from \u003ca href=\"https://github.com/Masterminds/sprig\"\u003eMasterminds/sprig\u003c/a\u003e have been incorporated for more robust Go template support in GitHub CLI and CLI extensions:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://masterminds.github.io/sprig/strings.html#contains\"\u003e\u003ccode\u003econtains\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://masterminds.github.io/sprig/strings.html#hasprefix-and-hassuffix\"\u003e\u003ccode\u003ehasPrefix\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/a08820a13f257d6c5b4cb86d37db559ec6d14577\"\u003e\u003ccode\u003ea08820a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/1ecf6c49ecb0629c6538d88970b669bf4f989ccc\"\u003e\u003ccode\u003e1ecf6c4\u003c/code\u003e\u003c/a\u003e Expand test cases for schem case sensitivity\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/56c6f10bd535e14098f5a21232f931463c808a77\"\u003e\u003ccode\u003e56c6f10\u003c/code\u003e\u003c/a\u003e Parse and examine URL, assume scheme if missing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/055ff2108e3edff35996a8efa3afa0a9e64649f1\"\u003e\u003ccode\u003e055ff21\u003c/code\u003e\u003c/a\u003e PR feedback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/258949bd372e4689d3203cbcef8734062ff59a97\"\u003e\u003ccode\u003e258949b\u003c/code\u003e\u003c/a\u003e Test refactor, refine errors, remove VSCode fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/0f8a22fe3a4b3d418268dfef57bcee15330f5b15\"\u003e\u003ccode\u003e0f8a22f\u003c/code\u003e\u003c/a\u003e Enhance OS-specific browser tests, PR feedback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/df956a6624bc1210543873062ce0905357be1299\"\u003e\u003ccode\u003edf956a6\u003c/code\u003e\u003c/a\u003e Initial fix for browsing URLs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/61bf393cf4aeea6d00a6251390f5f67f5b67e727\"\u003e\u003ccode\u003e61bf393\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cli/go-gh/issues/186\"\u003e#186\u003c/a\u003e from cli/accessible-colors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/024a89fbbde5be08804eaaea00fceb77c4d787dd\"\u003e\u003ccode\u003e024a89f\u003c/code\u003e\u003c/a\u003e Remove toolchain directive from library\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/09a555fed28dc12b9dba40c1fa911ce8ac2645ae\"\u003e\u003ccode\u003e09a555f\u003c/code\u003e\u003c/a\u003e Disable table wrapping for all\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cli/go-gh/compare/v2.11.2...v2.12.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.4.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.4.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.10 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/9d122a61c181b044e6b8b9c09979dfe7c513e2db\"\u003e\u003ccode\u003e9d122a6\u003c/code\u003e\u003c/a\u003e release version v0.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4ce6f08566c86bf66a9bc1c2f811336ae2e462c0\"\u003e\u003ccode\u003e4ce6f08\u003c/code\u003e\u003c/a\u003e lzma: fix handling of small dictionary sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/0b7c695d23f84aa7e968bbcaa1980847683d909a\"\u003e\u003ccode\u003e0b7c695\u003c/code\u003e\u003c/a\u003e xz: add reader benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/553507794087117cd9bdc95c924c1c5611bd991a\"\u003e\u003ccode\u003e5535077\u003c/code\u003e\u003c/a\u003e xz: add compression reate to Writer benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/886dc9acde193dec013d4812372011c64f6efbc2\"\u003e\u003ccode\u003e886dc9a\u003c/code\u003e\u003c/a\u003e xz: add benchmark for Writer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.10...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp` from 1.19.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/releases\"\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.23.0-rc.1\u003c/h2\u003e\n\u003cp\u003eThis is a release candidate for the v1.23.0 release. That release is expected to include the \u003ccode\u003ev1\u003c/code\u003e release of the following modules:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/bridge/opencensus\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/bridge/opencensus/test\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/example/opencensus\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee our \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/8f2bdf85ed99c6532b8c76688e7ffcf9e48c3e6d/VERSIONING.md\"\u003eversioning policy\u003c/a\u003e for more information about these stability guarantees.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.19.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` fro...\n\n_Description has been truncated_","html_url":"https://github.com/Sin-Estres-dev/terraform/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Sin-Estres-dev%2Fterraform/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"4221770763","node_id":"PR_kwDONtFecc7QrU1Y","number":8,"state":"closed","title":"Bump the go_modules group across 3 directories with 12 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-10T18:23:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T02:57:54.000Z","updated_at":"2026-04-10T18:23:23.000Z","time_to_close":228327,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":12,"packages":[{"name":"golang.org/x/crypto","old_version":"0.31.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"github.com/cloudflare/circl","old_version":"1.5.0","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"google.golang.org/grpc","old_version":"1.68.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/go-git/go-git/v5","old_version":"5.12.0","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/golang-jwt/jwt/v4","old_version":"4.5.1","new_version":"4.5.2","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.6","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 3 updates in the /.ci/providerlint directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 8 updates in the /.ci/tools directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.31.0` | `0.45.0` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.5.0` | `1.6.3` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.68.1` | `1.79.3` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.12.0` | `5.17.1` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |\n| [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) | `4.5.1` | `4.5.2` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.6` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 3 updates in the /tools/tfsdk2fw directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\n\nUpdates `golang.org/x/crypto` from 0.32.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.34.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.67.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.31.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.32.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.68.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.12.0 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.12.0...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v4` from 4.5.1 to 4.5.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\"\u003ehttps://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ehttps://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/2f0e9add62078527821828c76865661aa7718a84\"\u003e\u003ccode\u003e2f0e9ad\u003c/code\u003e\u003c/a\u003e Backporting 0951d18 to v4\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.6 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scop...\n\n_Description has been truncated_","html_url":"https://github.com/Jackblanket847/terraform-provider-aws/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jackblanket847%2Fterraform-provider-aws/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"},{"uuid":"4221754462","node_id":"PR_kwDOOjDzhc7QrRrU","number":6,"state":"open","title":"build(deps): bump the go_modules group across 5 directories with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T02:52:11.000Z","updated_at":"2026-04-08T02:52:15.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"go_modules","update_count":11,"packages":[{"name":"golang.org/x/crypto","old_version":"0.35.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"golang.org/x/oauth2","old_version":"0.26.0","new_version":"0.27.0","repository_url":"https://github.com/golang/oauth2"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.0.0-alpha.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/cloudflare/circl","old_version":"1.3.7","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/docker/cli","old_version":"27.4.1+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-git/v5","old_version":"5.13.1","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"golang.org/x/image","old_version":"0.24.0","new_version":"0.38.0","repository_url":"https://github.com/golang/image"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.35.0` | `0.45.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.26.0` | `0.27.0` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.0.0-alpha.1` | `2.4.0` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.7` | `1.6.3` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `27.4.1+incompatible` | `29.2.0+incompatible` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.13.1` | `5.17.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.11` | `0.5.14` |\n| [golang.org/x/image](https://github.com/golang/image) | `0.24.0` | `0.38.0` |\n\nBumps the go_modules group with 1 update in the /gokrazy/natlabapp.arm64/builddir/github.com/gokrazy/gokrazy/cmd/dhcp directory: [golang.org/x/net](https://github.com/golang/net).\nBumps the go_modules group with 1 update in the /gokrazy/natlabapp/builddir/github.com/gokrazy/gokrazy/cmd/dhcp directory: [golang.org/x/net](https://github.com/golang/net).\nBumps the go_modules group with 1 update in the /gokrazy/tsapp/builddir/github.com/gokrazy/breakglass directory: [golang.org/x/crypto](https://github.com/golang/crypto).\nBumps the go_modules group with 1 update in the /gokrazy/tsapp/builddir/github.com/gokrazy/gokrazy/cmd/dhcp directory: [golang.org/x/net](https://github.com/golang/net).\n\nUpdates `golang.org/x/crypto` from 0.35.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.35.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.36.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.26.0 to 0.27.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/681b4d8edca1bcfea5bce685d77ea7b82ed3e7b3\"\u003e\u003ccode\u003e681b4d8\u003c/code\u003e\u003c/a\u003e jws: split token into fixed number of parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3f78298beea38fb76a3fbca33e3056f4b7eb5502\"\u003e\u003ccode\u003e3f78298\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.23.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/109dabf9017129171d1807e485ca5633ecd095ac\"\u003e\u003ccode\u003e109dabf\u003c/code\u003e\u003c/a\u003e endpoints: add links/provider for Discord\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/ac571fa341c2a2b979d2b2c8341fd24767ef5d47\"\u003e\u003ccode\u003eac571fa\u003c/code\u003e\u003c/a\u003e oauth2: fix docs for Config.DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/314ee5b92bf23c4973aa8e61eba3ff458e80eef2\"\u003e\u003ccode\u003e314ee5b\u003c/code\u003e\u003c/a\u003e endpoints: add patreon endpoint\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.26.0...v0.27.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.0.0-alpha.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.0.0-alpha.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream` from 1.6.8 to 1.7.8\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e3b97d2a02cd4e27c40224f05aa1a7deba24abe2\"\u003e\u003ccode\u003ee3b97d2\u003c/code\u003e\u003c/a\u003e Release 2023-10-12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/863010ddb23c242c2a5d49d9f40094a6a49b5525\"\u003e\u003ccode\u003e863010d\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6946ef8b9149fe75ac1b427ca2c7f57cdcb64549\"\u003e\u003ccode\u003e6946ef8\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6d93ded4536184d38a664b4b75dadd36cbd79878\"\u003e\u003ccode\u003e6d93ded\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bebc232e7f65b02d0b519d11e73cf925c38e716f\"\u003e\u003ccode\u003ebebc232\u003c/code\u003e\u003c/a\u003e fix: fail to load config if configured profile doesn't exist (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2309\"\u003e#2309\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5de46742b7fb1b72d93d344ee81568800a707267\"\u003e\u003ccode\u003e5de4674\u003c/code\u003e\u003c/a\u003e fix DNS timeout error not retried (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2300\"\u003e#2300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e155bb72a2ec20ec61db50fc3d4568e373fa4b63\"\u003e\u003ccode\u003ee155bb7\u003c/code\u003e\u003c/a\u003e Release 2023-10-06\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/9d342ba33937c562d215f317a37dea121ee9763d\"\u003e\u003ccode\u003e9d342ba\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/1df99141a143a38570d64a182ed972ce9e3dba65\"\u003e\u003ccode\u003e1df9914\u003c/code\u003e\u003c/a\u003e Update SDK's smithy-go dependency to v1.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/32ada3a191ac770b1b24164b667692183fc77ed9\"\u003e\u003ccode\u003e32ada3a\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/rum/v1.6.8...service/m2/v1.7.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.3.7 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.3.7...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 27.4.1+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v27.4.1...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.13.1 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.13.1...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/image` from 0.24.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/23ae9ed61c1d3343fb95015810f62dcbf444976e\"\u003e\u003ccode\u003e23ae9ed\u003c/code\u003e\u003c/a\u003e tiff: cap buffer growth to prevent OOM from malicious IFD offset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e589e60f29d0bbbf6400e250e024f93cbc4961ee\"\u003e\u003ccode\u003ee589e60\u003c/code\u003e\u003c/a\u003e webp: allow VP8L + VP8X(with alpha)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/fe7d73de74b8a1ad508c93cfcb245d44579163ff\"\u003e\u003ccode\u003efe7d73d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e3d762b1d37ed96e757e3bc0bfb44f7455589df3\"\u003e\u003ccode\u003ee3d762b\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.25.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/833c6ed987962feaa3ec2624d8655421b25e2e0e\"\u003e\u003ccode\u003e833c6ed\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/bc7fe0b43a01586e7ca7c087a2e8a625e8397dcb\"\u003e\u003ccode\u003ebc7fe0b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/c53c97f4ed88d55fafe963ee6e93cb357663d650\"\u003e\u003ccode\u003ec53c97f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9032ff7c7b86f42b9bebdf6133191648224aecc0\"\u003e\u003ccode\u003e9032ff7\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9c9d08c65c08567c997eccc8bde52fcc9369bea6\"\u003e\u003ccode\u003e9c9d08c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/742b1b756d98a0c48b1fcf464a0c63fa50e1aa6b\"\u003e\u003ccode\u003e742b1b7\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/image/compare/v0.24.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.23.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.23.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.17.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.35.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.23.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hakancllk35/tailscale/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/hakancllk35/tailscale/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hakancllk35%2Ftailscale/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"},{"uuid":"4221546909","node_id":"PR_kwDONtFecc7Qqomj","number":7,"state":"closed","title":"Bump the go_modules group across 3 directories with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T02:57:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T01:43:11.000Z","updated_at":"2026-04-08T02:57:58.000Z","time_to_close":4485,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":11,"packages":[{"name":"golang.org/x/crypto","old_version":"0.31.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"github.com/cloudflare/circl","old_version":"1.5.0","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"google.golang.org/grpc","old_version":"1.68.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/go-git/go-git/v5","old_version":"5.12.0","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/golang-jwt/jwt/v4","old_version":"4.5.1","new_version":"4.5.2","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.6","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 3 updates in the /.ci/providerlint directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 8 updates in the /.ci/tools directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.31.0` | `0.45.0` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.5.0` | `1.6.3` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.68.1` | `1.79.3` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.12.0` | `5.17.1` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |\n| [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) | `4.5.1` | `4.5.2` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.6` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 3 updates in the /tools/tfsdk2fw directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\n\nUpdates `golang.org/x/crypto` from 0.32.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.34.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.67.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.31.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.32.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.68.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.12.0 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.12.0...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v4` from 4.5.1 to 4.5.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\"\u003ehttps://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ehttps://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/2f0e9add62078527821828c76865661aa7718a84\"\u003e\u003ccode\u003e2f0e9ad\u003c/code\u003e\u003c/a\u003e Backporting 0951d18 to v4\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.6 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scop...\n\n_Description has been truncated_","html_url":"https://github.com/Jackblanket847/terraform-provider-aws/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jackblanket847%2Fterraform-provider-aws/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"},{"uuid":"4191323479","node_id":"PR_kwDOLiXWlM7PcDQi","number":104,"state":"open","title":"chore(deps): bump the go_modules group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-02T03:47:52.000Z","updated_at":"2026-04-02T03:49:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":5,"packages":[{"name":"golang.org/x/crypto","old_version":"0.44.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"github.com/cloudflare/circl","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/hashicorp/go-getter","old_version":"1.6.1","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.8","new_version":"0.5.10"},{"name":"google.golang.org/grpc","old_version":"1.75.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the / directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl), [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\n\nUpdates `golang.org/x/crypto` from 0.44.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/crypto/compare/v0.44.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.6.1 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.6.1...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.8 to 0.5.10\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/b0e6b5a2af126053b434443f09f8b9678a31f02c\"\u003e\u003ccode\u003eb0e6b5a\u003c/code\u003e\u003c/a\u003e Release v0.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/51328d47e20687876ec37c882790293197a897cf\"\u003e\u003ccode\u003e51328d4\u003c/code\u003e\u003c/a\u003e xz: fix bug in readIndexBody\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/d24c4e7c9fd034f2733cfbb9826c4b1d4122b7c6\"\u003e\u003ccode\u003ed24c4e7\u003c/code\u003e\u003c/a\u003e Create codeql-analysis.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/97d4618bded97982c0a1daeae84e54286e32d09c\"\u003e\u003ccode\u003e97d4618\u003c/code\u003e\u003c/a\u003e Release v0.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/6ef4ef7710cc9db770fff7892ffc62aff71678c9\"\u003e\u003ccode\u003e6ef4ef7\u003c/code\u003e\u003c/a\u003e TODO.md: remarks for version v0.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/2f4e3cad0f1665081127c45b58d3114f8f6d1935\"\u003e\u003ccode\u003e2f4e3ca\u003c/code\u003e\u003c/a\u003e SECURITY.md: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f84da4cdfa12a40496c405b145e6216d90bd0e01\"\u003e\u003ccode\u003ef84da4c\u003c/code\u003e\u003c/a\u003e lzma: fix all ctaticcheck issues.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/978b2af59be76dbdb9a2c3611a504b95b875c36d\"\u003e\u003ccode\u003e978b2af\u003c/code\u003e\u003c/a\u003e xz: fix staticcheck warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/b7e51a5ef6574d55e50f5b0422f374b3372d3b67\"\u003e\u003ccode\u003eb7e51a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ulikunitz/xz/issues/39\"\u003e#39\u003c/a\u003e from ItsMattL/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/d234bb7e48202eb34fbfebee765058469194f13e\"\u003e\u003ccode\u003ed234bb7\u003c/code\u003e\u003c/a\u003e Fix static check error in format.go.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.8...v0.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.75.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.75.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Hawthorne001/terraform-provider-castai/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Hawthorne001/terraform-provider-castai/pull/104","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hawthorne001%2Fterraform-provider-castai/issues/104","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/104/packages"},{"uuid":"4172739891","node_id":"PR_kwDOOOGRdc7Osrah","number":4,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-03T03:46:40.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T17:37:50.000Z","updated_at":"2026-04-03T03:46:42.000Z","time_to_close":295730,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":11,"packages":[{"name":"github.com/anchore/quill","old_version":"0.5.1","new_version":"0.7.1","repository_url":"https://github.com/anchore/quill"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/buger/jsonparser","old_version":"1.1.1","new_version":"1.1.2","repository_url":"https://github.com/buger/jsonparser"},{"name":"github.com/cloudflare/circl","old_version":"1.3.8","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/docker/cli","old_version":"27.5.0+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-git/v5","old_version":"5.13.1","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/opencontainers/runc","old_version":"1.1.14","new_version":"1.2.8","repository_url":"https://github.com/opencontainers/runc"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 7 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/anchore/quill](https://github.com/anchore/quill) | `0.5.1` | `0.7.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.1` | `1.1.2` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.8` | `1.6.3` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `27.5.0+incompatible` | `29.2.0+incompatible` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.13.1` | `5.17.1` |\n| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.14` | `1.2.8` |\n\n\nUpdates `github.com/anchore/quill` from 0.5.1 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anchore/quill/releases\"\u003egithub.com/anchore/quill's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.7.1\u003c/h1\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow for unbounded reads for user controlled input [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/681\"\u003e#681\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAccount for excessive read limits in macho parsing [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/682\"\u003e#682\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eValidate developer log URL requests [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/680\"\u003e#680\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.7.0...v0.7.1\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch1\u003ev0.7.0\u003c/h1\u003e\n\u003ch3\u003eAdded Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edry run signing and notarization process before running in production [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/617\"\u003e#617\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/618\"\u003e#618\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTeamID is not set during signing [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/147\"\u003e#147\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/669\"\u003e#669\u003c/a\u003e \u003ca href=\"https://github.com/jflowers\"\u003e\u003ccode\u003e@​jflowers\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditional Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypo in install.sh help text [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/546\"\u003e#546\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/549\"\u003e#549\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003emigrate to latest tool ci patterns [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/670\"\u003e#670\u003c/a\u003e \u003ca href=\"https://github.com/spiffcs\"\u003e\u003ccode\u003e@​spiffcs\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate golang to v1.26 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/668\"\u003e#668\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003edoc: Add llms.txt for the 🤖 🕷️ [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/592\"\u003e#592\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eUpdate dependencies [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/627\"\u003e#627\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAdd periodic workflow to update certs [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/608\"\u003e#608\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003elint gh actions with zizmor [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/581\"\u003e#581\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate to go 1.24.x [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/543\"\u003e#543\u003c/a\u003e \u003ca href=\"https://github.com/westonsteimel\"\u003e\u003ccode\u003e@​westonsteimel\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate runners to ubuntu-24.04 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/541\"\u003e#541\u003c/a\u003e \u003ca href=\"https://github.com/kzantow\"\u003e\u003ccode\u003e@​kzantow\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.0\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/9cdb0823ea1d2c45dcc11557f8c5cd7291c75d29\"\u003e\u003ccode\u003e9cdb082\u003c/code\u003e\u003c/a\u003e do not allow for unbounded reads for user controlled input (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/681\"\u003e#681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/80cf3fe082678af0ec4f9f8dd93f39189d2dc1fe\"\u003e\u003ccode\u003e80cf3fe\u003c/code\u003e\u003c/a\u003e account for excessive read limits in macho parsing code (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/682\"\u003e#682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/e41d66a517c2dc20ad8e9fbccffbdc6ba5ef0020\"\u003e\u003ccode\u003ee41d66a\u003c/code\u003e\u003c/a\u003e validate developer log URL requests (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/899202c7eace3de7b3f4f7461bdfd1c4c38701db\"\u003e\u003ccode\u003e899202c\u003c/code\u003e\u003c/a\u003e update cred var values for p12 in release (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/679\"\u003e#679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/c73a37bd3b655633c1bd5466c2b2f65b2ae4032c\"\u003e\u003ccode\u003ec73a37b\u003c/code\u003e\u003c/a\u003e remove goreleaser config for release step + update tool refs (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/95e119c6cb513a69f6b45d3e86a9fbcb2c77b669\"\u003e\u003ccode\u003e95e119c\u003c/code\u003e\u003c/a\u003e persist credentials for git (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/02e765ab563811d7a3f0ede8df36977da92e8779\"\u003e\u003ccode\u003e02e765a\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/663\"\u003e#663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/530bb7f3ddf667d262891b79fb15c0147d81cf11\"\u003e\u003ccode\u003e530bb7f\u003c/code\u003e\u003c/a\u003e add test notarize command (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/3e8269c31055b1878a34c1954347254a42b37452\"\u003e\u003ccode\u003e3e8269c\u003c/code\u003e\u003c/a\u003e Set team ID during signing (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/12b3e8eb4c06d7582da9725fad3bc7c268872752\"\u003e\u003ccode\u003e12b3e8e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/blacktop/go-macho from 1.1.259 to 1.1.263 (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/buger/jsonparser` from 1.1.1 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/buger/jsonparser/releases\"\u003egithub.com/buger/jsonparser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated travis to build for 1.13 to 1.15 by \u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003eeliminate 2 allocations in EachKey() by \u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003efix issue \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/150\"\u003e#150\u003c/a\u003e (in deleting case) by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efixing the oss-fuzz issue by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/227\"\u003ebuger/jsonparser#227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix parseInt overflow check false negative by \u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded bespoke error for null cases by \u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFuzzing: Add CIFuzz by \u003ca href=\"https://github.com/AdamKorcz\"\u003e\u003ccode\u003e@​AdamKorcz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/239\"\u003ebuger/jsonparser#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded latest versions of go to tests by \u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix EachKey pIdxFlags allocation by \u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on negative slice index in Delete with malformed JSON (GO-2026-4514) by \u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a69e7e01cd4ad67bdfd3ac2c080b9212af16f4b0\"\u003e\u003ccode\u003ea69e7e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/276\"\u003e#276\u003c/a\u003e from dbarrosop/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/d3eacc0bab779d6cf98221f5268828fff287876e\"\u003e\u003ccode\u003ed3eacc0\u003c/code\u003e\u003c/a\u003e fix: prevent panic on negative slice index in Delete with malformed JSON (GO-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/61b32cfdfa0f5d368ef7c7daef28ce12d538740f\"\u003e\u003ccode\u003e61b32cf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/241\"\u003e#241\u003c/a\u003e from unxcepted/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2181e8398f18397c9cacbaea9889314bb585e868\"\u003e\u003ccode\u003e2181e83\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/244\"\u003e#244\u003c/a\u003e from ScaleChamp/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/1510b5194182fc2fb898f28cdbceb42fd7258bfa\"\u003e\u003ccode\u003e1510b51\u003c/code\u003e\u003c/a\u003e Added latest versions of go to tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/6fc2e488ed3cc4f1f1debec3b0c70715bd7be6fd\"\u003e\u003ccode\u003e6fc2e48\u003c/code\u003e\u003c/a\u003e fix: eachkey allocation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a6f867eb7787e4ec54536b77b5d628ddf5c4f73d\"\u003e\u003ccode\u003ea6f867e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/239\"\u003e#239\u003c/a\u003e from AdamKorcz/cifuzz1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/cbc01fdbbe131706e89eeaaf0cd917760d8d3949\"\u003e\u003ccode\u003ecbc01fd\u003c/code\u003e\u003c/a\u003e Fuzzing: Add CIFuzz\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/dc92d6932a1272b4d8f485f798a88c3a75106256\"\u003e\u003ccode\u003edc92d69\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/228\"\u003e#228\u003c/a\u003e from jonomacd/null-handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2d9d6343e8621ddc18c70749663f74bc584c0de4\"\u003e\u003ccode\u003e2d9d634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/231\"\u003e#231\u003c/a\u003e from carsonip/fix-parseint-overflow-check\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.3.8 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.3.8...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 27.5.0+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v27.5.0...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.13.1 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.13.1...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.0.0 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.0.0...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/runc` from 1.1.14 to 1.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/releases\"\u003egithub.com/opencontainers/runc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003erunc v1.2.8 -- \u0026quot;鳥籠の中に囚われた屈辱を\u0026quot;\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nSome vendors were given a pre-release version of this release.\nThis public release includes two extra patches to fix regressions\ndiscovered very late during the embargo period and were thus not\nincluded in the pre-release versions. Please update to this version.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains fixes for three high-severity security\nvulnerabilities in runc (\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e, and\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e). All three vulnerabilities ultimately allow (through\ndifferent methods) for full container breakouts by bypassing runc's\nrestrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e is a more sophisticated variant of \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e,\nwhich was a flaw that allowed an attacker to trick runc into writing the LSM\nprocess labels for a container process into a dummy tmpfs file and thus not\napply the correct LSM labels to the container process. The mitigation we\napplied for \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e was fairly limited and effectively only caused\nrunc to verify that when we write LSM labels that those labels are actual\nprocfs files. This issue affects all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eStatic Linking Notices\u003c/h3\u003e\n\u003cp\u003eThe \u003ccode\u003erunc\u003c/code\u003e binary distributed with this release are \u003cem\u003estatically linked\u003c/em\u003e with\nthe following \u003ca href=\"https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html\"\u003eGNU LGPL-2.1\u003c/a\u003e licensed libraries, with \u003ccode\u003erunc\u003c/code\u003e acting\nas a \u0026quot;work that uses the Library\u0026quot;:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seccomp/libseccomp\"\u003elibseccomp\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/blob/main/CHANGELOG.md\"\u003egithub.com/opencontainers/runc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.2.8] - 2025-11-05\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e鳥籠の中に囚われた屈辱を\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003eThis release includes fixes for the following high-severity security issues:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e is a more sophisticated variant of \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e,\nwhich was a flaw that allowed an attacker to trick runc into writing the LSM\nprocess labels for a container process into a dummy tmpfs file and thus not\napply the correct LSM labels to the container process. The mitigation we\napplied for \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e was fairly limited and effectively only caused\nrunc to verify that when we write LSM labels that those labels are actual\nprocfs files. This issue affects all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.4.0-rc.2] - 2025-10-10\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e私の役目は信じるかどうかではない。行うかどうかだ。\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003elibcontainer API\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe deprecated \u003ccode\u003elibcontainer/userns\u003c/code\u003e package has been removed; use\n\u003ccode\u003egithub.com/moby/sys/userns\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4910\"\u003e#4910\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4911\"\u003e#4911\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow setting \u003ccode\u003euser.*\u003c/code\u003e sysctls for user-namespaced containers, as they are\nnamespaced and thus safe to configure. (\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4889\"\u003e#4889\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4892\"\u003e#4892\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for using \u003ccode\u003eclone3(2)\u003c/code\u003e's \u003ccode\u003eCLONE_INTO_CGROUP\u003c/code\u003e flag when\nconfiguring the \u003ccode\u003erunc exec\u003c/code\u003e process. This also included some internal\nchanges to how we add processes to containers. (\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4822\"\u003e#4822\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4812\"\u003e#4812\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4920\"\u003e#4920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for configuring the NUMA pmemory policy for a container with\n\u003ccode\u003eset_mempolicy(2)\u003c/code\u003e\u003ccode\u003eopencontainers/runtime-spec#1282\u003c/code\u003e\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4726\"\u003e#4726\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4915\"\u003e#4915\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/eeb7e6024f9ee43876301b1d23c353384fa6dcdd\"\u003e\u003ccode\u003eeeb7e60\u003c/code\u003e\u003c/a\u003e VERSION: release v1.2.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/cdee962c391af84a922252c283bd065e5cabb34b\"\u003e\u003ccode\u003ecdee962\u003c/code\u003e\u003c/a\u003e merge private security patches into ghsa-release-1.2.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/b4cb2f5436a1110a1de4eec7335a791d2b30a868\"\u003e\u003ccode\u003eb4cb2f5\u003c/code\u003e\u003c/a\u003e rootfs: re-allow dangling symlinks in mount targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/ee56b8571cc81d41f85b069671bb6d33fd235cf1\"\u003e\u003ccode\u003eee56b85\u003c/code\u003e\u003c/a\u003e openat2: improve resilience on busy systems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/2462b68fa2d6618480e6a4f615661ee6e762d13a\"\u003e\u003ccode\u003e2462b68\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4943\"\u003e#4943\u003c/a\u003e from lifubang/backport-1.2-4934-4937\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/99e41a58f7a51cf1b6caa5bed58ffbe615193523\"\u003e\u003ccode\u003e99e41a5\u003c/code\u003e\u003c/a\u003e ci: only run lint-extra job on PRs to main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/f2a1c986629e82cffb3b7c01eee68405894f4783\"\u003e\u003ccode\u003ef2a1c98\u003c/code\u003e\u003c/a\u003e CI: remove deprecated lima-vm/lima-actions/ssh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/8f901856f96126285585e7343d7bc600013798fc\"\u003e\u003ccode\u003e8f90185\u003c/code\u003e\u003c/a\u003e selinux: use safe procfs API for labels\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/948d6e9dbece33da25886f18c97a128c347e95ff\"\u003e\u003ccode\u003e948d6e9\u003c/code\u003e\u003c/a\u003e rootfs: switch to fd-based handling of mountpoint targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/7aa42ade85d575294cf778b21edbd53c0171a3d4\"\u003e\u003ccode\u003e7aa42ad\u003c/code\u003e\u003c/a\u003e libct: align param type for mountCgroupV1/V2 functions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/opencontainers/runc/compare/v1.1.14...v1.2.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.33.0 to 1.35.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.35.0/0.57.0/0.11.0] 2025-03-05\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.22].\nThe next release will require at least [Go 1.23].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eValueFromAttribute\u003c/code\u003e and \u003ccode\u003eKeyValueFromAttribute\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6180\"\u003e#6180\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e and \u003ccode\u003eSetEventName\u003c/code\u003e to \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6187\"\u003e#6187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e to \u003ccode\u003eRecordFactory\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log/logtest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6187\"\u003e#6187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eAssertRecordEqual\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log/logtest\u003c/code\u003e checks \u003ccode\u003eRecord.EventName\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6187\"\u003e#6187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e and \u003ccode\u003eSetEventName\u003c/code\u003e to \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6193\"\u003e#6193\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e to \u003ccode\u003eRecordFactory\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log/logtest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6193\"\u003e#6193\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEmit \u003ccode\u003eRecord.EventName\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6211\"\u003e#6211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEmit \u003ccode\u003eRecord.EventName\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6211\"\u003e#6211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEmit \u003ccode\u003eRecord.EventName\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutlog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6210\"\u003e#6210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.28.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.28.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.28.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.27.0\u003c/code\u003e(\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6236\"\u003e#6236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.30.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.30.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.30.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.28.0\u003c/code\u003e(\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6240\"\u003e#6240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument the pitfalls of using \u003ccode\u003eResource\u003c/code\u003e as a comparable type.\n\u003ccode\u003eResource.Equal\u003c/code\u003e and \u003ccode\u003eResource.Equivalent\u003c/code\u003e should be used instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6272\"\u003e#6272\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport [Go 1.24]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6304\"\u003e#6304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFilterProcessor\u003c/code\u003e and \u003ccode\u003eEnabledParameters\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e.\nIt replaces \u003ccode\u003ego.opentelemetry.io/otel/sdk/log/internal/x.FilterProcessor\u003c/code\u003e.\nCompared to previous version it additionally gives the possibility to filter by resource and instrumentation scope. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6317\"\u003e#6317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003egithub.com/prometheus/common\u003c/code\u003e to \u003ccode\u003ev0.62.0\u003c/code\u003e, which changes the \u003ccode\u003eNameValidationScheme\u003c/code\u003e to \u003ccode\u003eNoEscaping\u003c/code\u003e.\nThis allows metrics names to keep original delimiters (e.g. \u003ccode\u003e.\u003c/code\u003e), rather than replacing with underscores.\nThis is controlled by the \u003ccode\u003eContent-Type\u003c/code\u003e header, or can be reverted by setting \u003ccode\u003eNameValidationScheme\u003c/code\u003e to \u003ccode\u003eLegacyValidation\u003c/code\u003e in \u003ccode\u003egithub.com/prometheus/common/model\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6198\"\u003e#6198\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEliminate goroutine leak for the processor returned by \u003ccode\u003eNewSimpleSpanProcessor\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e when \u003ccode\u003eShutdown\u003c/code\u003e is called and the passed \u003ccode\u003ectx\u003c/code\u003e is canceled and \u003ccode\u003eSpanExporter.Shutdown\u003c/code\u003e has not returned. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliminate goroutine leak for the processor returned by \u003ccode\u003eNewBatchSpanProcessor\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e when \u003ccode\u003eForceFlush\u003c/code\u003e is called and the passed \u003ccode\u003ectx\u003c/code\u003e is canceled and \u003ccode\u003eSpanExporter.Export\u003c/code\u003e has not returned. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6369\"\u003e#6369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.34.0/0.56.0/0.10.0] 2025-01-17\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the notices from \u003ccode\u003eLogger\u003c/code\u003e to make the whole Logs API user-facing in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6167\"\u003e#6167\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRelax minimum Go version to 1.22.0 in various modules. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6073\"\u003e#6073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eType\u003c/code\u003e name logged for the \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e client is corrected from \u003ccode\u003eotlphttpgrpc\u003c/code\u003e to \u003ccode\u003eotlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6143\"\u003e#6143\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5ba5e7a449f36c1c02710bbaa517263797046db0\"\u003e\u003ccode\u003e5ba5e7a\u003c/code\u003e\u003c/a\u003e Release v1.35.0/v0.57.0/v0.11.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6407\"\u003e#6407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3908b67340a7d9ee5c475cc5683535bc5da51ed8\"\u003e\u003ccode\u003e3908b67\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.22.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6412\"\u003e#6412\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/50172b1934dac5afd1527939a771b1e954624bea\"\u003e\u003ccode\u003e50172b1\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/ryancurrah/gomodguard to v1.4.1 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6411\"\u003e#6411\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/cea6d2b039590d9a489ab836e0609cc9d7645148\"\u003e\u003ccode\u003ecea6d2b\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.71.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6409\"\u003e#6409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e2aee3aff8abf61e7a8794b4d55e179ef1ed717c\"\u003e\u003ccode\u003ee2aee3a\u003c/code\u003e\u003c/a\u003e Move trace sdk tests from trace_test into trace package (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6400\"\u003e#6400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/38f4f39284a2e7ff3b09b9afa47657a41e4af591\"\u003e\u003ccode\u003e38f4f39\u003c/code\u003e\u003c/a\u003e fix(deps): update build-tools to v0.20.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6403\"\u003e#6403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/2911449bab33757c10bb32096bd76b946315a988\"\u003e\u003ccode\u003e2911449\u003c/code\u003e\u003c/a\u003e Look at stale issues in ascending...\n\n_Description has been truncated_","html_url":"https://github.com/lbeckman314/goreleaser/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lbeckman314%2Fgoreleaser/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"},{"uuid":"4153251037","node_id":"PR_kwDOKNdi0s7OEcPZ","number":1,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 13 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T02:42:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-27T14:33:32.000Z","updated_at":"2026-04-08T02:42:44.000Z","time_to_close":994151,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":13,"packages":[{"name":"cosmossdk.io/math","old_version":"1.1.2","new_version":"1.4.0","repository_url":"https://github.com/cosmos/cosmos-sdk"},{"name":"github.com/cometbft/cometbft","old_version":"0.38.0","new_version":"0.38.21","repository_url":"https://github.com/cometbft/cometbft"},{"name":"github.com/cosmos/cosmos-sdk","old_version":"0.50.0-rc.0","new_version":"0.50.14","repository_url":"https://github.com/cosmos/cosmos-sdk"},{"name":"filippo.io/edwards25519","old_version":"1.0.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.1","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.1.2` | `1.4.0` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `0.38.0` | `0.38.21` |\n| [github.com/cosmos/cosmos-sdk](https://github.com/cosmos/cosmos-sdk) | `0.50.0-rc.0` | `0.50.14` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.0.0` | `1.1.1` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.1` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.11` | `0.5.14` |\n\n\nUpdates `cosmossdk.io/math` from 1.1.2 to 1.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases\"\u003ecosmossdk.io/math's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCosmovisor v1.3.0\u003c/h2\u003e\n\u003ch1\u003eRelease Notes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix failure when installing cosmovisor via \u003ccode\u003ego install\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003eFor more details, please see the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/cosmovisor/v1.3.0/cosmovisor/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eCosmovisor v1.2.0\u003c/h2\u003e\n\u003ch2\u003eRelease Notes\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cp\u003eWith the \u003ccode\u003ecosmovisor init\u003c/code\u003e command, all the necessary folders for using cosmovisor are automatically created. You do not need to manually symlink the chain binary anymore.\u003c/p\u003e\n\u003cp\u003eWe've added a new configuration option: \u003ccode\u003eDAEMON_RESTART_DELAY\u003c/code\u003e (as env variable). When set, Cosmovisor will wait that delay between the node halt and backup. See the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/main/cosmovisor/README.md#command-line-arguments-and-environment-variables\"\u003eREADME\u003c/a\u003e file for more details.\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix Cosmovisor binary usage for pre-upgrade. Cosmovisor was using the wrong binary when running a \u003ccode\u003epre-upgrade\u003c/code\u003e command.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChangelog\u003c/h3\u003e\n\u003cp\u003eFor more details, please see the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/cosmovisor/v1.1.0/cosmovisor/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ecollections/v1.2.0\u003c/h2\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/24081\"\u003e#24081\u003c/a\u003e Remove \u003ccode\u003ecosmossdk.io/core\u003c/code\u003e dependency.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/6b4557ddb8d865a68381a1b059ea9d5666e28710\"\u003e\u003ccode\u003e6b4557d\u003c/code\u003e\u003c/a\u003e chore: prepare log v1.4.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21197\"\u003e#21197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5a08833386eb358151038c0bc113124b57192269\"\u003e\u003ccode\u003e5a08833\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21189\"\u003e#21189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/655b30367576edae1afacfc95d99bd2f3d98a447\"\u003e\u003ccode\u003e655b303\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21190\"\u003e#21190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/cc25f59e6198a4acca5d120a86b34c561b476b45\"\u003e\u003ccode\u003ecc25f59\u003c/code\u003e\u003c/a\u003e ci: add compat check 052 x main (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21174\"\u003e#21174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5b7d8b6d82d4d5a50bdb37d8369600f5ef491b9b\"\u003e\u003ccode\u003e5b7d8b6\u003c/code\u003e\u003c/a\u003e test(stf/mock): Unmarshal with knowing the message type (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21178\"\u003e#21178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/641f9646510e5567a4a6b0011b44ac9eef6ab073\"\u003e\u003ccode\u003e641f964\u003c/code\u003e\u003c/a\u003e ci: attempt to fix goreleaser (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21194\"\u003e#21194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/a0fdab27b2425d5cb28b4fafa898e79e2acc4837\"\u003e\u003ccode\u003ea0fdab2\u003c/code\u003e\u003c/a\u003e test(server/v2): Update testdata prune options (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21192\"\u003e#21192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/4b4ec478dfd26edf3ddc906c757cea1cc8dac68f\"\u003e\u003ccode\u003e4b4ec47\u003c/code\u003e\u003c/a\u003e build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21191\"\u003e#21191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/feb0e077a953f5982c0a64743f849ae257223baa\"\u003e\u003ccode\u003efeb0e07\u003c/code\u003e\u003c/a\u003e feat: [ADR-071] Cryptography v2 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/18824\"\u003e#18824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/111a99995ea9d9732ffd66ac1cf4a214c77d3d8e\"\u003e\u003ccode\u003e111a999\u003c/code\u003e\u003c/a\u003e docs: rename v2 to di (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21181\"\u003e#21181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/math/v1.1.2...log/v1.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 0.38.0 to 0.38.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.38.21\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(statesync): add max snapshot chunks configuration (v0.38.x) by \u003ca href=\"https://github.com/mattac21\"\u003e\u003ccode\u003e@​mattac21\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5548\"\u003ecometbft/cometbft#5548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5581\"\u003ecometbft/cometbft#5581\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.20\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate NOTICE (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5495\"\u003e#5495\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5496\"\u003ecometbft/cometbft#5496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add voting power validation (v0.38.x) by \u003ca href=\"https://github.com/technicallyty\"\u003e\u003ccode\u003e@​technicallyty\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5520\"\u003ecometbft/cometbft#5520\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.19\u003c/h2\u003e\n\u003cp\u003eThis is a security patch release to the CometBFT \u003ccode\u003ev0.38.x\u003c/code\u003e family that fixes \u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-hrhf-2vcr-ghch\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: fix test docker image by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5299\"\u003ecometbft/cometbft#5299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: refactor changelogs by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5303\"\u003ecometbft/cometbft#5303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update and fix mockery tooling on v0.38 by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5301\"\u003ecometbft/cometbft#5301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix the linter by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5304\"\u003ecometbft/cometbft#5304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(store):  Properly prune extended commits (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5276\"\u003e#5276\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5313\"\u003ecometbft/cometbft#5313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: clean up the repo by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5315\"\u003ecometbft/cometbft#5315\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove exposed dockertest port to unblock postgres test by \u003ca href=\"https://github.com/almk-dev\"\u003e\u003ccode\u003e@​almk-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5325\"\u003ecometbft/cometbft#5325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(consensus/reactor): reject oversized proposals (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5324\"\u003e#5324\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5407\"\u003ecometbft/cometbft#5407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/be5677c3e58f998b7f67bb6186dd2c9b81a041a1\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.18\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: remove redundant error check for PubKeyToProto by \u003ca href=\"https://github.com/islishude\"\u003e\u003ccode\u003e@​islishude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4917\"\u003ecometbft/cometbft#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove govulncheck (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4946\"\u003e#4946\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4961\"\u003ecometbft/cometbft#4961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4936\"\u003ecometbft/cometbft#4936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ci): Fix docker builds (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4949\"\u003e#4949\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4963\"\u003ecometbft/cometbft#4963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4972\"\u003ecometbft/cometbft#4972\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5008\"\u003ecometbft/cometbft#5008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5009\"\u003ecometbft/cometbft#5009\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4990\"\u003ecometbft/cometbft#4990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4992\"\u003ecometbft/cometbft#4992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4998\"\u003ecometbft/cometbft#4998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4997\"\u003ecometbft/cometbft#4997\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4994\"\u003ecometbft/cometbft#4994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4995\"\u003ecometbft/cometbft#4995\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typo in workflow_dispatch (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5164\"\u003e#5164\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5166\"\u003ecometbft/cometbft#5166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(testapp-docker): release two images, not one (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5014\"\u003e#5014\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5168\"\u003ecometbft/cometbft#5168\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/main/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCHANGELOG\u003c/h1\u003e\n\u003ch2\u003eUNRELEASED\u003c/h2\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[evidence]\u003c/code\u003e Add validation for Light Client Attack evidence ByzantineValidators\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5638\"\u003e#5638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Fix buffer offset bug in \u003ccode\u003eProposerPriorityHash\u003c/code\u003e that caused hash collisions when validator priorities differed\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5613\"\u003e#5613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e fix(privval): Ephemeral Port Exhaustion\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e fix(blocksync): \u003ccode\u003eExtendedCommit\u003c/code\u003e verification via next blocks \u003ccode\u003eLastCommit\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5629\"\u003e#5629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[p2p] fix(lp2p): enforce stream max size (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5647\"\u003e#5647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[metrics]\u003c/code\u003e fix(metrics)!: peer_send_queue_size\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5648\"\u003e#5648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e fix adaptive_sync and streamline stateSync logic\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5663\"\u003e#5663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e Modify blocksync to use full commit verification instead of light\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5663\"\u003e#5663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[adaptivesync]\u003c/code\u003e Simplify loop, reuse blockExec.ValidateBlock\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5717\"\u003e#5717\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVEMENTS\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[ci]\u003c/code\u003e: add lp2p testnet (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5643\"\u003e#5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e feat!(p2p): introduce follower-mode. Improve lib-p2p integraap access\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Add validation for \u003ccode\u003eAuthorityParams.Authority\u003c/code\u003e field in consensus params, enforcing a maximum length of 256 characters (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5511\"\u003e#5511\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e perf(mempool/cache): Optimize LRUTxCache.Remove to reduce lock contention and map access\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5244\"\u003e#5244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[e2e]\u003c/code\u003e add support for testing different keytypes, including BLS\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/3513\"\u003e#3513\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto]\u003c/code\u003e Reduce BLS signature size to 48 bytes by increasing pubkey size to\n192 bytes (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3624\"\u003e#3624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e Add configurable \u003ccode\u003emax-snapshot-chunks\u003c/code\u003e parameter to validate max amount of chunks in a \u003ccode\u003eSnapshotResponse\u003c/code\u003e.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5549\"\u003e#5549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(lp2p): make reactor queue configurable\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5662\"\u003e#5662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[cli]\u003c/code\u003e print lib-p2p peer id\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5667\"\u003e#5667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e Add warning when go-libp2p transport is enabled, conveying that the setting\nshould only be activated if it can be enabled simultaneously for all validators\nand peer IDs have been predetermined and exchanged\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5692\"\u003e#5692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(p2p): add adaptive sync for comet-p2p\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5705\"\u003e#5705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c56d64ec53bd72dfd99a5b0f5cb3eaad224a7021\"\u003e\u003ccode\u003ec56d64e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/01d5ea5ceea466cfe4a81c107269570c01c7c9a5\"\u003e\u003ccode\u003e01d5ea5\u003c/code\u003e\u003c/a\u003e test: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5581\"\u003e#5581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/bd517d2eb251e966aa192929cbc9afd1f7ae69c5\"\u003e\u003ccode\u003ebd517d2\u003c/code\u003e\u003c/a\u003e test: remove unnecessary loop variable capture\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/7c43155314c1ab52036814b1ffb702c2767b312a\"\u003e\u003ccode\u003e7c43155\u003c/code\u003e\u003c/a\u003e test: add coverage for TotalVotingPowerSafe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/eeb4a59930a0407f7581c2214f2f44eae65085df\"\u003e\u003ccode\u003eeeb4a59\u003c/code\u003e\u003c/a\u003e fix test cases in validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/161f7ac9fcb14293fce10e8160f44e671c520953\"\u003e\u003ccode\u003e161f7ac\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/a4e41a11fe723ba7b659460dcec1215769b9dda7\"\u003e\u003ccode\u003ea4e41a1\u003c/code\u003e\u003c/a\u003e fix linter errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/26dc17f5a8b33efeb4865ce2503b7bc792bc6a78\"\u003e\u003ccode\u003e26dc17f\u003c/code\u003e\u003c/a\u003e Add ValidateBlock tests for median time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c36a8edb32bdb8f0661db47ce2e64cd17fe61e08\"\u003e\u003ccode\u003ec36a8ed\u003c/code\u003e\u003c/a\u003e fix verbs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/dcf7e3b4bceddc1d0e55d67d1ac80e85fd9ea87c\"\u003e\u003ccode\u003edcf7e3b\u003c/code\u003e\u003c/a\u003e add test and fix a test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.0...v0.38.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cosmos/cosmos-sdk` from 0.50.0-rc.0 to 0.50.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases\"\u003egithub.com/cosmos/cosmos-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.50.14\u003c/h2\u003e\n\u003ch1\u003eCosmos SDK v0.50.14 Release Notes\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-p22h-3m2v-cmgh\"\u003eGHSA-p22h-3m2v-cmgh\u003c/a\u003e.\nIt resolves a \u003ccode\u003ex/distribution\u003c/code\u003e module issue that can halt chains when the historical rewards pool overflows.\nChains using the \u003ccode\u003ex/distribution\u003c/code\u003e module are affected by this issue.\u003c/p\u003e\n\u003cp\u003eWe recommended upgrading to this patch release as soon as possible.\u003c/p\u003e\n\u003cp\u003eThis patch is state-breaking; chains must perform a coordinated upgrade. This patch cannot be applied in a rolling upgrade.\u003c/p\u003e\n\u003ch2\u003e📝 Changelog\u003c/h2\u003e\n\u003cp\u003eCheck out the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/v0.50.14/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for an exhaustive list of changes or \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/v0.50.13...v0.50.14\"\u003ecompare changes\u003c/a\u003e from the last release.\u003c/p\u003e\n\u003ch2\u003ev0.50.13\u003c/h2\u003e\n\u003ch1\u003eCosmos SDK v0.50.13 Release Notes\u003c/h1\u003e\n\u003cp\u003e💬 \u003ca href=\"https://github.com/orgs/cosmos/discussions/6\"\u003e\u003cstrong\u003eRelease Discussion\u003c/strong\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-47ww-ff84-4jrg\"\u003eGHSA-47ww-ff84-4jrg\u003c/a\u003e.\nIt resolves a \u003ccode\u003ex/group\u003c/code\u003e module issue that can halt chains when there is invalid state in the endblocker.\nOnly users of the \u003ccode\u003ex/group\u003c/code\u003e module are affected by this issue.\u003c/p\u003e\n\u003cp\u003eWe recommended to upgrade to this patch release as soon as possible.\u003c/p\u003e\n\u003cp\u003eThis patch is not state-breaking, so chains can upgrade in a rolling manner. This does not have to be a coordinated upgrade. However, validators should upgrade as soon as possible when the release is made available. If the vulnerability is exploited before 2/3 is patched, the chain will halt.\u003c/p\u003e\n\u003ch2\u003e📝 Changelog\u003c/h2\u003e\n\u003cp\u003eCheck out the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/v0.50.13/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for an exhaustive list of changes or \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/v0.50.12...v0.50.13\"\u003ecompare changes\u003c/a\u003e from last release.\u003c/p\u003e\n\u003ch2\u003ev0.50.12\u003c/h2\u003e\n\u003ch1\u003eCosmos SDK v0.50.12 Release Notes\u003c/h1\u003e\n\u003cp\u003e💬 \u003ca href=\"https://github.com/orgs/cosmos/discussions/58\"\u003e\u003cstrong\u003eRelease Discussion\u003c/strong\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-x5vx-95h7-rv4p\"\u003eGHSA-x5vx-95h7-rv4p\u003c/a\u003e.\nIt resolves a \u003ccode\u003ex/group\u003c/code\u003e module issue that can halt chain when handling a malicious proposal.\nOnly users of the \u003ccode\u003ex/group\u003c/code\u003e module are affected by this issue.\u003c/p\u003e\n\u003cp\u003eWe recommended to upgrade to this patch release as soon as possible.\nWhen upgrading from \u0026lt;= v0.50.11, please use a chain upgrade to ensure that 2/3 of the validator power upgrade to v0.50.12.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/v0.50.14/CHANGELOG.md\"\u003egithub.com/cosmos/cosmos-sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.14\"\u003ev0.50.14\u003c/a\u003e - 2025-07-08\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-p22h-3m2v-cmgh\"\u003eGHSA-p22h-3m2v-cmgh\u003c/a\u003e Fix x/distribution can halt when historical rewards overflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.13\"\u003ev0.50.13\u003c/a\u003e - 2025-03-12\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-47ww-ff84-4jrg\"\u003eGHSA-47ww-ff84-4jrg\u003c/a\u003e Fix x/group can halt when erroring in EndBlocker\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.12\"\u003ev0.50.12\u003c/a\u003e - 2025-02-20\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-x5vx-95h7-rv4p\"\u003eGHSA-x5vx-95h7-rv4p\u003c/a\u003e Fix Group module can halt chain when handling a malicious proposal\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.11\"\u003ev0.50.11\u003c/a\u003e - 2024-12-16\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(crypto/keyring) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21653\"\u003e#21653\u003c/a\u003e New Linux-only backend that adds Linux kernel's \u003ccode\u003ekeyctl\u003c/code\u003e support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(server) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21941\"\u003e#21941\u003c/a\u003e Regenerate addrbook.json for in place testnet.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-8wcc-m6j2-qxvm\"\u003eABS-0043/ABS-0044\u003c/a\u003e Limit recursion depth for unknown field detection and unpack any\u003c/li\u003e\n\u003cli\u003e(server) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/22564\"\u003e#22564\u003c/a\u003e Fix fallback genesis path in server\u003c/li\u003e\n\u003cli\u003e(x/group) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/22425\"\u003e#22425\u003c/a\u003e Proper address rendering in error\u003c/li\u003e\n\u003cli\u003e(sims) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21906\"\u003e#21906\u003c/a\u003e Skip sims test when running dry on validators\u003c/li\u003e\n\u003cli\u003e(cli) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21919\"\u003e#21919\u003c/a\u003e Query address-by-acc-num by account_id instead of id.\u003c/li\u003e\n\u003cli\u003e(x/group) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/22229\"\u003e#22229\u003c/a\u003e Accept \u003ccode\u003e1\u003c/code\u003e and \u003ccode\u003etry\u003c/code\u003e in CLI for group proposal exec.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.10\"\u003ev0.50.10\u003c/a\u003e - 2024-09-20\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(cli) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/20779\"\u003e#20779\u003c/a\u003e Added \u003ccode\u003emodule-hash-by-height\u003c/code\u003e command to query and retrieve module hashes at a specified blockchain height, enhancing debugging capabilities.\u003c/li\u003e\n\u003cli\u003e(cli) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21372\"\u003e#21372\u003c/a\u003e Added a \u003ccode\u003ebulk-add-genesis-account\u003c/code\u003e genesis command to add many genesis accounts at once.\u003c/li\u003e\n\u003cli\u003e(types/collections) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21724\"\u003e#21724\u003c/a\u003e Added \u003ccode\u003eLegacyDec\u003c/code\u003e collection value.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(x/bank) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21460\"\u003e#21460\u003c/a\u003e Added \u003ccode\u003eSender\u003c/code\u003e attribute in \u003ccode\u003eMsgMultiSend\u003c/code\u003e event.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/f2e6295b662fdb27ea33da1296c29588ccdaab42\"\u003e\u003ccode\u003ef2e6295\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/7b9d2ff98d02bd5a7edd3b153dd577819cc1d777\"\u003e\u003ccode\u003e7b9d2ff\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/98164408932ee74369b7ce18aa13bb1a1a6ba76b\"\u003e\u003ccode\u003e9816440\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/158f14600e3ecc53b6f4ccb5823fa6c276f6a071\"\u003e\u003ccode\u003e158f146\u003c/code\u003e\u003c/a\u003e chore: remove unused orm module (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23633\"\u003e#23633\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23637\"\u003e#23637\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/effb71f9068592c845691e2def9b04b80149ce0b\"\u003e\u003ccode\u003eeffb71f\u003c/code\u003e\u003c/a\u003e docs: correct explanation on how to set custom signer via depinject (backport...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/b9db4d29aaeaf95887c5363c8050dc342ed4f1a2\"\u003e\u003ccode\u003eb9db4d2\u003c/code\u003e\u003c/a\u003e docs(keyring): add keyctl docs (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23563\"\u003e#23563\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23566\"\u003e#23566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5f08d2183b1f40aac9cdcc99708fea8ece2abb98\"\u003e\u003ccode\u003e5f08d21\u003c/code\u003e\u003c/a\u003e feat(client/v2): add map support (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23544\"\u003e#23544\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23554\"\u003e#23554\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/f1b139de544aec25b90dfda5db6fb50128b9228c\"\u003e\u003ccode\u003ef1b139d\u003c/code\u003e\u003c/a\u003e feat(x/tx): add an option to encode maps using amino json (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23539\"\u003e#23539\u003c/a\u003e) (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/9d3c384c843648d50bceb324bd5dea925b58962d\"\u003e\u003ccode\u003e9d3c384\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/cosmos/ledger-cosmos-go from 0.13.3 to 0.14.0 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/f4655874070078f7b92ecf1235d7fd35531809b9\"\u003e\u003ccode\u003ef465587\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/cosmos/cosmos-db from 1.1.0 to 1.1.1 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23030\"\u003e#23030\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/v0.50.0-rc.0...v0.50.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.58.1 to 1.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.70.0\u003c/h2\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eclient: reject service configs containing an invalid retryPolicy in accordance with gRFCs \u003ca href=\"https://github.com/grpc/proposal/blob/master/A21-service-config-error-handling.md\"\u003eA21\u003c/a\u003e and \u003ca href=\"https://github.com/grpc/proposal/blob/master/A6-client-retries.md\"\u003eA6\u003c/a\u003e.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7905\"\u003e#7905\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eNote that this is a potential breaking change for some users using an invalid configuration, but continuing to allow this behavior would violate our cross-language compatibility requirements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exdsclient: fallback to a secondary management server (if specified in the bootstrap configuration) when the primary is down is enabled by default. Can be disabled by setting the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_XDS_FALLBACK\u003c/code\u003e to \u003ccode\u003efalse\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7949\"\u003e#7949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexperimental/credentials: experimental transport credentials are added which don't enforce ALPN. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7980\"\u003e#7980\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThese credentials will be removed in an upcoming grpc-go release. Users must not rely on these credentials directly. Instead, they should either vendor a specific version of gRPC or copy the relevant credentials into their own codebase if absolutely necessary.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exds: fix a possible deadlock that happens when both the client application and the xDS management server (responsible for configuring the client) are using the xds:/// scheme in their target URIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8011\"\u003e#8011\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: for unary requests, free raw request message data as soon as parsing is finished instead of waiting until the method handler returns. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7998\"\u003e#7998\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/lqs\"\u003e\u003ccode\u003e@​lqs\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eDocumentation\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexamples/features/gracefulstop: add example to demonstrate server graceful stop. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7865\"\u003e#7865\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.69.4\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003erbac: fix support for :path header matchers, which would previously never successfully match (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7965\"\u003e#7965\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eDocumentation\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexamples/features/csm_observability: update example client and server to use the helloworld service instead of echo service (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7945\"\u003e#7945\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRelease 1.69.3 was accidentally tagged on the master branch and will be deleted. Please update to 1.69.4 instead.\u003c/p\u003e\n\u003ch2\u003eRelease 1.69.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats/experimental: add type aliases for symbols (\u003ccode\u003eMetrics\u003c/code\u003e/etc) that were moved to the stats package (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7929\"\u003e#7929\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eclient: set user-agent string to the correct version.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.69.0\u003c/h2\u003e\n\u003ch1\u003eKnown Issues\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eThe recently added \u003ccode\u003egrpc.NewClient\u003c/code\u003e function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7556\"\u003e#7556\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7874\"\u003e#7874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003exdsclient: add support to fallback to lower priority servers when higher priority ones are down (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7701\"\u003e#7701\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edns: Add support for link local IPv6 addresses (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7889\"\u003e#7889\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe new experimental \u003ccode\u003epickfirst\u003c/code\u003e LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in \u003ca href=\"https://www.rfc-editor.org/rfc/rfc8305#section-4\"\u003eRFC-8305 section 4\u003c/a\u003e, to attempt connections to multiple backends concurrently. The experimental \u003ccode\u003epickfirst\u003c/code\u003e policy can be enabled by setting the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST\u003c/code\u003e to \u003ccode\u003etrue\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7725\"\u003e#7725\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7742\"\u003e#7742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/98a0092952dd4d8443229c3a335ec592d9c40c9b\"\u003e\u003ccode\u003e98a0092\u003c/code\u003e\u003c/a\u003e Change version to 1.70.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7984\"\u003e#7984\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/bf380dec5e059ea6e7d07cec015dd0c913831a6a\"\u003e\u003ccode\u003ebf380de\u003c/code\u003e\u003c/a\u003e Cherrypick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7998\"\u003e#7998\u003c/a\u003e,  \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8011\"\u003e#8011\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8010\"\u003e#8010\u003c/a\u003e into 1.70.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8028\"\u003e#8028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/54b3eb97dbf7400efb5750f26084c2d3b2eff120\"\u003e\u003ccode\u003e54b3eb9\u003c/code\u003e\u003c/a\u003e experimental/credentials: Add credentials that don't enforce ALPN (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7980\"\u003e#7980\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8\"\u003e#8\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/62b9185a6296155e47efd39d60298d8de0a6ed1d\"\u003e\u003ccode\u003e62b9185\u003c/code\u003e\u003c/a\u003e clustetresolver: Copy endpoints.Addresses slice from DNS updates to avoid dat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/724f450f77a09bade8174e5052625977069aaf81\"\u003e\u003ccode\u003e724f450\u003c/code\u003e\u003c/a\u003e examples/features/csm_observability: use helloworld client and server instead...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/e8d5feb181766059429259ce3345ddb1f667ded5\"\u003e\u003ccode\u003ee8d5feb\u003c/code\u003e\u003c/a\u003e rbac: add method name to :path in headers (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7965\"\u003e#7965\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/e912015fd3f4aabdff6d6cf835e321c19a204afb\"\u003e\u003ccode\u003ee912015\u003c/code\u003e\u003c/a\u003e cleanup: Fix usages of non-constant format strings (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7959\"\u003e#7959\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/681334a46115da3a5f9086c47e3d501a19362256\"\u003e\u003ccode\u003e681334a\u003c/code\u003e\u003c/a\u003e cleanup: replace dial with newclient (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7943\"\u003e#7943\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/063d352de07403a582ef33f8f5f8149e3b57c47e\"\u003e\u003ccode\u003e063d352\u003c/code\u003e\u003c/a\u003e internal/resolver: introduce a new resolver to handle target URI and proxy ad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/10c7e13311f48bf5237738f4f19b53f62b1146cd\"\u003e\u003ccode\u003e10c7e13\u003c/code\u003e\u003c/a\u003e outlierdetection: Support health listener for ejection updates (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7908\"\u003e#7908\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.58.1...v1.70.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/protobuf` from 1.31.0 to 1.36.5\n\nUpdates `filippo.io/edwards25519` from 1.0.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/325f520de716c1d2d2b4e8dc2f82c7ccc5fac764\"\u003e\u003ccode\u003e325f520\u003c/code\u003e\u003c/a\u003e all: update Go version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/c0501e42ed9e2e9c0f835c0cd04ac9290b09611e\"\u003e\u003ccode\u003ec0501e4\u003c/code\u003e\u003c/a\u003e all: drop old +build lines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/23384ff85ba004b0c4d61c2e85e4170cc25bb59b\"\u003e\u003ccode\u003e23384ff\u003c/code\u003e\u003c/a\u003e all: use the indefinite article an in comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/16197b4051cdd9be445994c80d43145350ba7d6a\"\u003e\u003ccode\u003e16197b4\u003c/code\u003e\u003c/a\u003e crypto/internal/edwards25519: shorten quick.Check tests in short mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/6387a56aa63ba12266063ae61fc7736bb425a59f\"\u003e\u003ccode\u003e6387a56\u003c/code\u003e\u003c/a\u003e all: fix misuses of \u0026quot;a\u0026quot; vs \u0026quot;an\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/c901e5ec3cea876847d87a6b2db0b74fe9eb330a\"\u003e\u003ccode\u003ec901e5e\u003c/code\u003e\u003c/a\u003e crypto/internal/edwards25519: reduce Point size by reordering fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/daffb3191296479a2895abcf1ecec9ebf68cc987\"\u003e\u003ccode\u003edaffb31\u003c/code\u003e\u003c/a\u003e all: fix problematic comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/5caf132ffa3cf766bd20ed8a226930b7ec6898a4\"\u003e\u003ccode\u003e5caf132\u003c/code\u003e\u003c/a\u003e all: give nested modules fully-qualified names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/4bafd0bab422dc89780c22bfff68171f97908784\"\u003e\u003ccode\u003e4bafd0b\u003c/code\u003e\u003c/a\u003e edwards25519: gofmt scalar_fiat.go\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.0.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/dvsekhvalnov/jose2go` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/48ba0b76bc881767cff2723388f4dd1a47c5104a\"\u003e\u003ccode\u003e48ba0b7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/32\"\u003e#32\u003c/a\u003e from dvsekhvalnov/issue-31-security-tuning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/05eb00788125e3996824d2005e850ed8b37d5aa4\"\u003e\u003ccode\u003e05eb007\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/e0264a274aa4c14e22f197c5325599224c1dd412\"\u003e\u003ccode\u003ee0264a2\u003c/code\u003e\u003c/a\u003e added helper matchers: Alg and Eng\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/0f6c7c346282f2d264aef1d7dec8be71f9190b08\"\u003e\u003ccode\u003e0f6c7c3\u003c/code\u003e\u003c/a\u003e MatchAlg helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/cf0a53b05fc1faf3e655a30bd7d523cb3a2c6dbd\"\u003e\u003ccode\u003ecf0a53b\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/299576231d2311655289f451218678044d6ddbc9\"\u003e\u003ccode\u003e2995762\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/9a18aff07b6c5574e02d74439ad7d7ae88510b6f\"\u003e\u003ccode\u003e9a18aff\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/675bb14fb3216d48f571b7e5d4274faf4aceb069\"\u003e\u003ccode\u003e675bb14\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/8e9e0d1c6b39ac448a6042ed1275efa70a81c7b7\"\u003e\u003ccode\u003e8e9e0d1\u003c/code\u003e\u003c/a\u003e updated p2c limits with new OWASP numbers, docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/ed5dd96763d198ce95dc10b9252cb96854522114\"\u003e\u003ccode\u003eed5dd96\u003c/code\u003e\u003c/a\u003e Unit tests for custom 'p2c' headers min/max limits\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dvsekhvalnov/jose2go/compare/v1.5...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang/glog` from 1.1.0 to 1.2.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang/glog/releases\"\u003egithub.com/golang/glog's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.2.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: check that stderr is valid before using it by default by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/72\"\u003egolang/glog#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eglog: fix typo by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/73\"\u003egolang/glog#73\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.2.2...v1.2.3\"\u003ehttps://github.com/golang/glog/compare/v1.2.2...v1.2.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: avoid calling user.Current() on windows by \u003ca href=\"https://github.com/bentekkie\"\u003e\u003ccode\u003e@​bentekkie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/69\"\u003egolang/glog#69\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.2.1...v1.2.2\"\u003ehttps://github.com/golang/glog/compare/v1.2.1...v1.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: don't hold mutex when sync'ing by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/68\"\u003egolang/glog#68\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.2.0...v1.2.1\"\u003ehttps://github.com/golang/glog/compare/v1.2.0...v1.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: add context variants and logsink tests by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/66\"\u003egolang/glog#66\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.1.2...v1.2.0\"\u003ehttps://github.com/golang/glog/compare/v1.1.2...v1.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003cp\u003eBugfix release.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: populate symlinks -log_link directory by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/64\"\u003egolang/glog#64\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/golang/glog/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.1\u003c/h2\u003e\n\u003cp\u003eBugfixes since the larger v1.1.0, which have been addressed.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/04dbec0df8d03d5c187beaf5ce8e6c58e9fc82b5\"\u003e\u003ccode\u003e04dbec0\u003c/code\u003e\u003c/a\u003e glog: fix typo (\u003ca href=\"https://redirect.github.com/golang/glog/issues/73\"\u003e#73\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/459cf3b8151dcfd8aa971077774eaf0c804119e4\"\u003e\u003ccode\u003e459cf3b\u003c/code\u003e\u003c/a\u003e glog: check that stderr is valid before using it by default (\u003ca href=\"https://redirect.github.com/golang/glog/issues/72\"\u003e#72\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/97303146a4ffecf364d4300e07fca855d0062c43\"\u003e\u003ccode\u003e9730314\u003c/code\u003e\u003c/a\u003e glog: avoid calling user.Current() on windows (\u003ca href=\"https://redirect.github.com/golang/glog/issues/69\"\u003e#69\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/861d094757551d2f65d1003f0ec93bc92b254a5a\"\u003e\u003ccode\u003e861d094\u003c/code\u003e\u003c/a\u003e glog: don't hold mutex when sync'ing (\u003ca href=\"https://redirect.github.com/golang/glog/issues/68\"\u003e#68\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/b256bbe5d3f846c1d1ce73030c10973378e04cf0\"\u003e\u003ccode\u003eb256bbe\u003c/code\u003e\u003c/a\u003e glog: add context variants to most log functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/bcf318487a966b61bca6189643b72648fa132e6e\"\u003e\u003ccode\u003ebcf3184\u003c/code\u003e\u003c/a\u003e glog/internal/logsink: add logsink tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/6b9d7f7df28d318a28dde3adb8a5e9ae9bf1abaf\"\u003e\u003ccode\u003e6b9d7f7\u003c/code\u003e\u003c/a\u003e glog: populate symlinks -log_link directory (\u003ca href=\"https://redirect.github.com/golang/glog/issues/64\"\u003e#64\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/03ad3c2a3f1c767129f0b355507de7ae615f53b8\"\u003e\u003ccode\u003e03ad3c2\u003c/code\u003e\u003c/a\u003e glog: use os.Stderr directly for writing to stderr (\u003ca href=\"https://redirect.github.com/golang/glog/issues/62\"\u003e#62\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/6ce8ac99c51353f04e95b18e2ef0fbc783df580c\"\u003e\u003ccode\u003e6ce8ac9\u003c/code\u003e\u003c/a\u003e glog: update minimum go version to go1.19 (\u003ca href=\"https://redirect.github.com/golang/glog/issues/61\"\u003e#61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/c0f9e3d764d339d6b6443032e034c7d3bd5efe3a\"\u003e\u003ccode\u003ec0f9e3d\u003c/code\u003e\u003c/a\u003e glog: don't use SIGABRT on platforms that don't support signals\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/glog/compare/v1.1.0...v1.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.1 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.1...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.13.0 to 0.33.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/9290511cd23ab9813a307b7f2615325e3ca98902\"\u003e\u003ccode\u003e9290511\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/fa5273e461966728f91f33da62c0cf511a404c2a\"\u003e\u003ccode\u003efa5273e\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a8ea4be81f0769fd5857e087083cbb6d3cb9f196\"\u003e\u003ccode\u003ea8ea4be\u003c/code\u003e\u003c/a\u003e ssh: add ServerConfig.PreAuthConnCallback, ServerPreAuthConn (banner) interface\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/71d3a4cfdb0360795ce5f2d7041e01823fd22eb6\"\u003e\u003ccode\u003e71d3a4c\u003c/code\u003e\u003c/a\u003e acme: support challenges that require the ACME client to send a non-empty JSO...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8929309228b460566ebf06dc56684799f352b0b0\"\u003e\u003ccode\u003e8929309\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4a75ba54c28f9c8aa4011c3c5e9e146fd8c83359\"\u003e\u003ccode\u003e4a75ba5\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909\"\u003e\u003ccode\u003eb4f1988\u003c/code\u003e\u003c/a\u003e ssh: make the public key cache a 1-entry FIFO cache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7042ebcbe097f305ba3a93f9a22b4befa4b83d29\"\u003e\u003ccode\u003e7042ebc\u003c/code\u003e\u003c/a\u003e openpgp/clearsign: just use rand.Reader in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3e90321ac7bcee3d924ed63ed3ad97be2079cb56\"\u003e\u003ccode\u003e3e90321\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8c4e668694ccbaa1be4785da7e7a40f2ef93152b\"\u003e\u003ccode\u003e8c4e668\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.13.0...v0.33.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.15.0 to 0.35.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/df97a48b7bf2f79d63b98d48185389824125a2cf\"\u003e\u003ccode\u003edf97a48\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2dab271ff1b7396498746703d88fefcddcc5cec7\"\u003e\u003ccode\u003e2dab271\u003c/code\u003e\u003c/a\u003e route: treat short sockaddr lengths as unspecified\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b914489dfb743e20a8cef8c4586d9329303f7511\"\u003e\u003ccode\u003eb914489\u003c/code\u003e\u003c/a\u003e internal/http3: refactor in prep for sharing transport/server code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebd23f8b4b6645821a91bf9da4a10b3d30a98fb2\"\u003e\u003ccode\u003eebd23f8\u003c/code\u003e\u003c/a\u003e route: fix parsing network address of length zero\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/938a9fb94e41285a443b0882dbc46f2a4c6ed484\"\u003e\u003ccode\u003e938a9fb\u003c/code\u003e\u003c/a\u003e internal/http3: add request/response body transfer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/145b2d7b6deef8ae469696157bcb974d045cfc05\"\u003e\u003ccode\u003e145b2d7\u003c/code\u003e\u003c/a\u003e internal/http3: add RoundTrip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5bda71aec0d0242e8b2cc529863c6484c0f1f24b\"\u003e\u003ccode\u003e5bda71a\u003c/code\u003e\u003c/a\u003e internal/http3: define connection and stream error types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/3c1185a39b172f62f67243986cf710bd74776347\"\u003e\u003ccode\u003e3c1185a\u003c/code\u003e\u003c/a\u003e internal/http3: return error on mid-frame EOF\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/a6c2c7f3642a8abe22535078b3b40ba3e4fcb9f0\"\u003e\u003ccode\u003ea6c2c7f\u003c/code\u003e\u003c/a\u003e http2, internal/httpcommon: factor out common request header logic for h2/h3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c72e89d6a9e44335237356faeef3b98d5c1fa770\"\u003e\u003ccode\u003ec72e89d\u003c/code\u003e\u003c/a\u003e internal/http3: QPACK encoding and decoding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.15.0...v0.35.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.10.0 to 0.24.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/22134a41033e44c2cd074106770ab5b7ca910d15\"\u003e\u003ccode\u003e22134a4\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3e6480915d39dd1a80fa460e56413857f02cc1b9\"\u003e\u003ccode\u003e3e64809\u003c/code\u003e\u003c/a\u003e x/oauth2: add Token.ExpiresIn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/16a9973a41c72ea3e252e9c14be34fcaa2928211\"\u003e\u003ccode\u003e16a9973\u003c/code\u003e\u003c/a\u003e jwt: rename example to avoid vet error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/b52af7d5b4e39d5bb1ee067d8aa110fcce9e4cc7\"\u003e\u003ccode\u003eb52af7d\u003c/code\u003e\u003c/a\u003e endpoints: add GitLab DeviceAuthURL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/6d8340f1c53c54333dc5f280d68732afd4d05113\"\u003e\u003ccode\u003e6d8340f\u003c/code\u003e\u003c/a\u003e LICENSE: update per Google Legal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/5fd42413edb3b1699004a31b72e485e0e4ba1b13\"\u003e\u003ccode\u003e5fd4241\u003c/code\u003e\u003c/a\u003e google: update compute token refresh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/84cb9f7f5c5a639955cd501bfdd54f0e63997e61\"\u003e\u003ccode\u003e84cb9f7\u003c/code\u003e\u003c/a\u003e oauth2: fix typo in comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/4b7f0bdbc7c30d05383d2597847300fbb870608b\"\u003e\u003ccode\u003e4b7f0bd\u003c/code\u003e\u003c/a\u003e go.mod: update cloud.google.com/go/compute/metadata dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/e11eea88a89331c1fae3d38a37f484363a8d597d\"\u003e\u003ccode\u003ee11eea8\u003c/code\u003e\u003c/a\u003e microsoft: added DeviceAuthURL to AzureADEndpoint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/d0e617c58cf747cf27df9762003502f814dd524c\"\u003e\u003ccode\u003ed0e617c\u003c/code\u003e\u003c/a\u003e google: add Credentials.UniverseDomainProvider\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.10.0...v0.24.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aljo242/block-sdk/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/aljo242/block-sdk/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aljo242%2Fblock-sdk/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"},{"uuid":"4102076223","node_id":"PR_kwDOOMe5cc7L3jPz","number":12,"state":"closed","title":"Bump the go_modules group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-20T20:39:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T14:23:17.000Z","updated_at":"2026-03-20T20:39:58.000Z","time_to_close":108991,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":7,"packages":[{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.2.1","new_version":"5.2.2","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.5","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.10","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"golang.org/x/oauth2","old_version":"0.7.0","new_version":"0.27.0","repository_url":"https://github.com/golang/oauth2"},{"name":"google.golang.org/grpc","old_version":"1.56.3","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.2.1` | `5.2.2` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.10` | `0.5.14` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.7.0` | `0.27.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.56.3` | `1.79.3` |\n\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.1 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ca href=\"https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\"\u003ehttps://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\u003c/a\u003e by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed some typos by \u003ca href=\"https://github.com/Ashikpaul\"\u003e\u003ccode\u003e@​Ashikpaul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/382\"\u003egolang-jwt/jwt#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: add go1.22 to ci workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/383\"\u003egolang-jwt/jwt#383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/387\"\u003egolang-jwt/jwt#387\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/389\"\u003egolang-jwt/jwt#389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: bump ci tests to include go1.23 by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/405\"\u003egolang-jwt/jwt#405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix jwt -show by \u003ca href=\"https://github.com/AlexanderYastrebov\"\u003e\u003ccode\u003e@​AlexanderYastrebov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/406\"\u003egolang-jwt/jwt#406\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: typo by \u003ca href=\"https://github.com/kvii\"\u003e\u003ccode\u003e@​kvii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/407\"\u003egolang-jwt/jwt#407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate SECURITY.md by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/416\"\u003egolang-jwt/jwt#416\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003ejwt.Parse\u003c/code\u003e example to use \u003ccode\u003ejwt.WithValidMethods\u003c/code\u003e by \u003ca href=\"https://github.com/mattt\"\u003e\u003ccode\u003e@​mattt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/425\"\u003egolang-jwt/jwt#425\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Ashikpaul\"\u003e\u003ccode\u003e@​Ashikpaul\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/382\"\u003egolang-jwt/jwt#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kvii\"\u003e\u003ccode\u003e@​kvii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/407\"\u003egolang-jwt/jwt#407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattt\"\u003e\u003ccode\u003e@​mattt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/425\"\u003egolang-jwt/jwt#425\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3\"\u003e\u003ccode\u003e0951d18\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/c035977d9e11c351f4c05dfeae193923cbab49ee\"\u003e\u003ccode\u003ec035977\u003c/code\u003e\u003c/a\u003e Update Parse example to use WithValidMethods (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/bc8bdca5cced1caa9787e4a1c313a3538544c877\"\u003e\u003ccode\u003ebc8bdca\u003c/code\u003e\u003c/a\u003e Update SECURITY.md (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/5ec246c074b71790eec1f2e05b54daf6ec29ec5f\"\u003e\u003ccode\u003e5ec246c\u003c/code\u003e\u003c/a\u003e docs: typo (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/407\"\u003e#407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/0123f1ad66cbc45013dbfba6eff0cd81472bfc12\"\u003e\u003ccode\u003e0123f1a\u003c/code\u003e\u003c/a\u003e Fix jwt -show (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/406\"\u003e#406\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/f961c72abd3b91442a9ab3d3e356bf547636e89b\"\u003e\u003ccode\u003ef961c72\u003c/code\u003e\u003c/a\u003e chore: bump ci tests to include go1.23 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/405\"\u003e#405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/62e504c2810b67f6b97313424411cfffb25e41b0\"\u003e\u003ccode\u003e62e504c\u003c/code\u003e\u003c/a\u003e Bump golangci/golangci-lint-action from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/389\"\u003e#389\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/1a56dcf532089fc2bb723a3cb4076a4e45cb1c1a\"\u003e\u003ccode\u003e1a56dcf\u003c/code\u003e\u003c/a\u003e Bump golangci/golangci-lint-action from 4 to 5 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/387\"\u003e#387\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/c8043eab61f0ec5bdd924c1c30caf164a9bb2c66\"\u003e\u003ccode\u003ec8043ea\u003c/code\u003e\u003c/a\u003e build: add go1.22 to ci workflows (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/383\"\u003e#383\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7c3f6dc56316e5e222a9df9612ec04243189a989\"\u003e\u003ccode\u003e7c3f6dc\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/382\"\u003e#382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.5 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.5...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.10 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/9d122a61c181b044e6b8b9c09979dfe7c513e2db\"\u003e\u003ccode\u003e9d122a6\u003c/code\u003e\u003c/a\u003e release version v0.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4ce6f08566c86bf66a9bc1c2f811336ae2e462c0\"\u003e\u003ccode\u003e4ce6f08\u003c/code\u003e\u003c/a\u003e lzma: fix handling of small dictionary sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/0b7c695d23f84aa7e968bbcaa1980847683d909a\"\u003e\u003ccode\u003e0b7c695\u003c/code\u003e\u003c/a\u003e xz: add reader benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/553507794087117cd9bdc95c924c1c5611bd991a\"\u003e\u003ccode\u003e5535077\u003c/code\u003e\u003c/a\u003e xz: add compression reate to Writer benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/886dc9acde193dec013d4812372011c64f6efbc2\"\u003e\u003ccode\u003e886dc9a\u003c/code\u003e\u003c/a\u003e xz: add benchmark for Writer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.10...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.25.0 to 0.32.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8929309228b460566ebf06dc56684799f352b0b0\"\u003e\u003ccode\u003e8929309\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4a75ba54c28f9c8aa4011c3c5e9e146fd8c83359\"\u003e\u003ccode\u003e4a75ba5\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909\"\u003e\u003ccode\u003eb4f1988\u003c/code\u003e\u003c/a\u003e ssh: make the public key cache a 1-entry FIFO cache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7042ebcbe097f305ba3a93f9a22b4befa4b83d29\"\u003e\u003ccode\u003e7042ebc\u003c/code\u003e\u003c/a\u003e openpgp/clearsign: just use rand.Reader in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3e90321ac7bcee3d924ed63ed3ad97be2079cb56\"\u003e\u003ccode\u003e3e90321\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8c4e668694ccbaa1be4785da7e7a40f2ef93152b\"\u003e\u003ccode\u003e8c4e668\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/6018723c74059e3b91c84268b212c2f6cdab1f64\"\u003e\u003ccode\u003e6018723\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/71ed71b4faf97caafd1863fed003e9ac311f10ee\"\u003e\u003ccode\u003e71ed71b\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/750a45fe5e473d5afa193e9088f3d135e64eca26\"\u003e\u003ccode\u003e750a45f\u003c/code\u003e\u003c/a\u003e sha3: add MarshalBinary, AppendBinary, and UnmarshalBinary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/36b172546bd03a74c79e109ec84c599b672ea9e4\"\u003e\u003ccode\u003e36b1725\u003c/code\u003e\u003c/a\u003e sha3: avoid trailing permutation\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.25.0...v0.32.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.27.0 to 0.34.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd\"\u003e\u003ccode\u003e8da7ed1\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d\"\u003e\u003ccode\u003e2124140\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72\"\u003e\u003ccode\u003ee9d95ba\u003c/code\u003e\u003c/a\u003e http2: do not surface errors from a conn's idle timer expiring\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f\"\u003e\u003ccode\u003ec2be992\u003c/code\u003e\u003c/a\u003e quic: remember which remote connection IDs have been retired\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464\"\u003e\u003ccode\u003edfc720d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb\"\u003e\u003ccode\u003e8e66b04\u003c/code\u003e\u003c/a\u003e html: use strings.EqualFold instead of lowering ourselves\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46\"\u003e\u003ccode\u003eb935f7b\u003c/code\u003e\u003c/a\u003e html: avoid endless loop on error token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3\"\u003e\u003ccode\u003e9af49ef\u003c/code\u003e\u003c/a\u003e route: remove unused sizeof* consts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a\"\u003e\u003ccode\u003e6705db9\u003c/code\u003e\u003c/a\u003e quic: clean up crypto streams when dropping packet protection keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200\"\u003e\u003ccode\u003e4ef7588\u003c/code\u003e\u003c/a\u003e quic: handle ACK frame in packet which drops number space\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.27.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.7.0 to 0.27.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/681b4d8edca1bcfea5bce685d77ea7b82ed3e7b3\"\u003e\u003ccode\u003e681b4d8\u003c/code\u003e\u003c/a\u003e jws: split token into fixed number of parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3f78298beea38fb76a3fbca33e3056f4b7eb5502\"\u003e\u003ccode\u003e3f78298\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.23.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/109dabf9017129171d1807e485ca5633ecd095ac\"\u003e\u003ccode\u003e109dabf\u003c/code\u003e\u003c/a\u003e endpoints: add links/provider for Discord\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/ac571fa341c2a2b979d2b2c8341fd24767ef5d47\"\u003e\u003ccode\u003eac571fa\u003c/code\u003e\u003c/a\u003e oauth2: fix docs for Config.DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/314ee5b92bf23c4973aa8e61eba3ff458e80eef2\"\u003e\u003ccode\u003e314ee5b\u003c/code\u003e\u003c/a\u003e endpoints: add patreon endpoint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/b9c813be7d0ec3262d46deb8677ba5cda93d95ec\"\u003e\u003ccode\u003eb9c813b\u003c/code\u003e\u003c/a\u003e google: add warning about externally-provided credentials\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/49a531d12a9ad6fa9f5a070d577ac752ada772c9\"\u003e\u003ccode\u003e49a531d\u003c/code\u003e\u003c/a\u003e all: make method and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/22134a41033e44c2cd074106770ab5b7ca910d15\"\u003e\u003ccode\u003e22134a4\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3e6480915d39dd1a80fa460e56413857f02cc1b9\"\u003e\u003ccode\u003e3e64809\u003c/code\u003e\u003c/a\u003e x/oauth2: add Token.ExpiresIn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/16a9973a41c72ea3e252e9c14be34fcaa2928211\"\u003e\u003ccode\u003e16a9973\u003c/code\u003e\u003c/a\u003e jwt: rename example to avoid vet error\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.7.0...v0.27.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.56.3 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.56.3...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/launchbynttdata/tf-azurerm-module_reference-iothub/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/launchbynttdata/tf-azurerm-module_reference-iothub/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/launchbynttdata%2Ftf-azurerm-module_reference-iothub/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"},{"uuid":"4098794966","node_id":"PR_kwDORqemQ87LuLNa","number":5,"state":"closed","title":"build(deps): Bump github.com/ulikunitz/xz from 0.5.11 to 0.5.14 in /test/integration","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-19T03:14:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T02:15:05.000Z","updated_at":"2026-03-19T03:14:47.000Z","time_to_close":3573,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":"/test/integration","ecosystem":"go"},"body":"Bumps [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) from 0.5.11 to 0.5.14.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/ulikunitz/xz\u0026package-manager=go_modules\u0026previous-version=0.5.11\u0026new-version=0.5.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/GoogleCloudPlatform/terraform-google-firebase/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/terraform-google-firebase/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fterraform-google-firebase/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"},{"uuid":"4098674635","node_id":"PR_kwDOOmKkos7Ltyg8","number":108,"state":"open","title":"chore(deps): Bump the go_modules group across 1 directory with 14 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-19T01:36:33.000Z","updated_at":"2026-05-04T04:08:03.127Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"go_modules","update_count":14,"packages":[{"name":"github.com/CosmWasm/wasmd","old_version":"0.55.0","new_version":"0.55.1","repository_url":"https://github.com/CosmWasm/wasmd"},{"name":"github.com/cometbft/cometbft","old_version":"0.38.17","new_version":"0.38.21","repository_url":"https://github.com/cometbft/cometbft"},{"name":"google.golang.org/grpc","old_version":"1.71.0","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/docker/cli","old_version":"26.1.4+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/ethereum/go-ethereum","old_version":"1.15.5","new_version":"1.17.0","repository_url":"https://github.com/ethereum/go-ethereum"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.5","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/opencontainers/runc","old_version":"1.1.14","new_version":"1.2.8","repository_url":"https://github.com/opencontainers/runc"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 10 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/CosmWasm/wasmd](https://github.com/CosmWasm/wasmd) | `0.55.0` | `0.55.1` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `0.38.17` | `0.38.21` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.71.0` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `26.1.4+incompatible` | `29.2.0+incompatible` |\n| [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) | `1.15.5` | `1.17.0` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.14` | `1.2.8` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.11` | `0.5.14` |\n\n\nUpdates `github.com/CosmWasm/wasmd` from 0.55.0 to 0.55.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CosmWasm/wasmd/releases\"\u003egithub.com/CosmWasm/wasmd's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.55.1\u003c/h2\u003e\n\u003cp\u003eFixes \u003ca href=\"https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2025-004.md\"\u003eCWA-2025-004\u003c/a\u003e, \u003ca href=\"https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2025-005.md\"\u003eCWA-2025-005\u003c/a\u003e and \u003ca href=\"https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2025-006.md\"\u003eCWA-2025-006\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CosmWasm/wasmd/blob/main/CHANGELOG.md\"\u003egithub.com/CosmWasm/wasmd's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/HEAD\"\u003eUnreleased\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.7...HEAD\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.7\"\u003ev0.61.7\u003c/a\u003e (2026-01-29)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.6...v0.61.7\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump cosmos-sdk to \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.53.5\"\u003ev0.53.5\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump cometbft to \u003ca href=\"https://github.com/cometbft/cometbft/releases/tag/v0.38.21\"\u003ev0.38.21\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ibc-go to \u003ca href=\"https://github.com/cosmos/ibc-go/releases/tag/v10.5.0\"\u003ev10.5.0\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.5\"\u003ev0.61.5\u003c/a\u003e (2025-11-04)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.4...v0.61.5\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix ContractInfo protobuf message \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2390\"\u003e#2390\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRetracted v0.61.0 v0.61.1 v0.61.2 v0.61.3 v0.61.4 because of unnecessary api breaking changes. See \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/issues/2386\"\u003eCosmWasm/wasmd#2386\u003c/a\u003e for more details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.4\"\u003ev0.61.4\u003c/a\u003e (2025-08-29)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.3...v0.61.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump wasmvm to v3.0.2 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2359\"\u003e#2359\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.3\"\u003ev0.61.3\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.2...v0.61.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump wasmvm to v3.0.1 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2355\"\u003e#2355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.2\"\u003ev0.61.2\u003c/a\u003e (2025-07-29)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.1...v0.61.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump cosmos-sdk to v0.53.4 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2334\"\u003e#2334\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.1\"\u003ev0.61.1\u003c/a\u003e (2025-07-08)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.0...v0.61.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump cosmos-sdk to \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.53.3\"\u003ev0.53.3\u003c/a\u003e which includes a security fix to \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-p22h-3m2v-cmgh\"\u003eISA-2025-005\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.0\"\u003ev0.61.0\u003c/a\u003e (2025-06-24)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.55.0...v0.61.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to wasmvm 3.0.0 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2304\"\u003e#2304\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/fec61cbfb2e1dcfd2b1e86c9fb0a2bc7a9b3a223\"\u003e\u003ccode\u003efec61cb\u003c/code\u003e\u003c/a\u003e Use ExpectedJSONSize function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/41c5c499308b80bb9f09e322cf2334ee59c7cc6f\"\u003e\u003ccode\u003e41c5c49\u003c/code\u003e\u003c/a\u003e Fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/b87bc9d194adbc06410845f0d8b2934b8d0443c2\"\u003e\u003ccode\u003eb87bc9d\u003c/code\u003e\u003c/a\u003e Add setup cost for IBC operations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/e53611e0f202a17b1780b366ca4f545059b3d27e\"\u003e\u003ccode\u003ee53611e\u003c/code\u003e\u003c/a\u003e Add comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/4bc38cb7ecabad97d11b9fdc2fa586ec7d5027d5\"\u003e\u003ccode\u003e4bc38cb\u003c/code\u003e\u003c/a\u003e Restructure error handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/181e9be4f8830dcbaaeb29f3a56036bff8531884\"\u003e\u003ccode\u003e181e9be\u003c/code\u003e\u003c/a\u003e Fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/b908d29f14a0d92fd0d4cb0f544d49c1ff7634e9\"\u003e\u003ccode\u003eb908d29\u003c/code\u003e\u003c/a\u003e Improve readability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/e3c85fc17b0fc2256958b69e1481d4f25e975cdc\"\u003e\u003ccode\u003ee3c85fc\u003c/code\u003e\u003c/a\u003e Fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/9b91a71b5b212343e34673e25956031db7497667\"\u003e\u003ccode\u003e9b91a71\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/issues/2238\"\u003e#2238\u003c/a\u003e from CosmWasm/co/update-wasmvm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/c51b4e453ce9dcfdeb0b2beedf9edf19fce27368\"\u003e\u003ccode\u003ec51b4e4\u003c/code\u003e\u003c/a\u003e Update dockerfile\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.55.0...v0.55.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 0.38.17 to 0.38.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.38.21\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(statesync): add max snapshot chunks configuration (v0.38.x) by \u003ca href=\"https://github.com/mattac21\"\u003e\u003ccode\u003e@​mattac21\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5548\"\u003ecometbft/cometbft#5548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5581\"\u003ecometbft/cometbft#5581\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.20\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate NOTICE (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5495\"\u003e#5495\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5496\"\u003ecometbft/cometbft#5496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add voting power validation (v0.38.x) by \u003ca href=\"https://github.com/technicallyty\"\u003e\u003ccode\u003e@​technicallyty\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5520\"\u003ecometbft/cometbft#5520\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.19\u003c/h2\u003e\n\u003cp\u003eThis is a security patch release to the CometBFT \u003ccode\u003ev0.38.x\u003c/code\u003e family that fixes \u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-hrhf-2vcr-ghch\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: fix test docker image by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5299\"\u003ecometbft/cometbft#5299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: refactor changelogs by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5303\"\u003ecometbft/cometbft#5303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update and fix mockery tooling on v0.38 by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5301\"\u003ecometbft/cometbft#5301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix the linter by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5304\"\u003ecometbft/cometbft#5304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(store):  Properly prune extended commits (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5276\"\u003e#5276\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5313\"\u003ecometbft/cometbft#5313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: clean up the repo by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5315\"\u003ecometbft/cometbft#5315\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove exposed dockertest port to unblock postgres test by \u003ca href=\"https://github.com/almk-dev\"\u003e\u003ccode\u003e@​almk-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5325\"\u003ecometbft/cometbft#5325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(consensus/reactor): reject oversized proposals (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5324\"\u003e#5324\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5407\"\u003ecometbft/cometbft#5407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/be5677c3e58f998b7f67bb6186dd2c9b81a041a1\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.18\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: remove redundant error check for PubKeyToProto by \u003ca href=\"https://github.com/islishude\"\u003e\u003ccode\u003e@​islishude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4917\"\u003ecometbft/cometbft#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove govulncheck (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4946\"\u003e#4946\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4961\"\u003ecometbft/cometbft#4961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4936\"\u003ecometbft/cometbft#4936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ci): Fix docker builds (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4949\"\u003e#4949\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4963\"\u003ecometbft/cometbft#4963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4972\"\u003ecometbft/cometbft#4972\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5008\"\u003ecometbft/cometbft#5008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5009\"\u003ecometbft/cometbft#5009\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4990\"\u003ecometbft/cometbft#4990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4992\"\u003ecometbft/cometbft#4992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4998\"\u003ecometbft/cometbft#4998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4997\"\u003ecometbft/cometbft#4997\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4994\"\u003ecometbft/cometbft#4994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4995\"\u003ecometbft/cometbft#4995\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typo in workflow_dispatch (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5164\"\u003e#5164\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5166\"\u003ecometbft/cometbft#5166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(testapp-docker): release two images, not one (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5014\"\u003e#5014\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5168\"\u003ecometbft/cometbft#5168\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/main/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCHANGELOG\u003c/h1\u003e\n\u003ch2\u003eUNRELEASED\u003c/h2\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[evidence]\u003c/code\u003e Add validation for Light Client Attack evidence ByzantineValidators\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5638\"\u003e#5638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Fix buffer offset bug in \u003ccode\u003eProposerPriorityHash\u003c/code\u003e that caused hash collisions when validator priorities differed\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5613\"\u003e#5613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e fix(privval): Ephemeral Port Exhaustion\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e fix(blocksync): \u003ccode\u003eExtendedCommit\u003c/code\u003e verification via next blocks \u003ccode\u003eLastCommit\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5629\"\u003e#5629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[p2p] fix(lp2p): enforce stream max size (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5647\"\u003e#5647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[metrics]\u003c/code\u003e fix(metrics)!: peer_send_queue_size\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5648\"\u003e#5648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e fix adaptive_sync and streamline stateSync logic\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5663\"\u003e#5663\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVEMENTS\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[ci]\u003c/code\u003e: add lp2p testnet (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5643\"\u003e#5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e feat!(p2p): introduce follower-mode. Improve lib-p2p integraap access\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Add validation for \u003ccode\u003eAuthorityParams.Authority\u003c/code\u003e field in consensus params, enforcing a maximum length of 256 characters (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5511\"\u003e#5511\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e perf(mempool/cache): Optimize LRUTxCache.Remove to reduce lock contention and map access\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5244\"\u003e#5244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[e2e]\u003c/code\u003e add support for testing different keytypes, including BLS\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/3513\"\u003e#3513\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto]\u003c/code\u003e Reduce BLS signature size to 48 bytes by increasing pubkey size to\n192 bytes (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3624\"\u003e#3624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e Add configurable \u003ccode\u003emax-snapshot-chunks\u003c/code\u003e parameter to validate max amount of chunks in a \u003ccode\u003eSnapshotResponse\u003c/code\u003e.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5549\"\u003e#5549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(lp2p): make reactor queue configurable\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5662\"\u003e#5662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[cli]\u003c/code\u003e print lib-p2p peer id\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5667\"\u003e#5667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e Add warning when go-libp2p transport is enabled, conveying that the setting\nshould only be activated if it can be enabled simultaneously for all validators\nand peer IDs have been predetermined and exchanged\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5692\"\u003e#5692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(p2p): add adaptive sync for comet-p2p\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5705\"\u003e#5705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFEATURES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(lp2p): implemented resource limiter (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5671\"\u003e#5671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(consensus): add adaptive sync blocksync-to-consensus ingestion (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5633\"\u003e#5633\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c56d64ec53bd72dfd99a5b0f5cb3eaad224a7021\"\u003e\u003ccode\u003ec56d64e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/01d5ea5ceea466cfe4a81c107269570c01c7c9a5\"\u003e\u003ccode\u003e01d5ea5\u003c/code\u003e\u003c/a\u003e test: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5581\"\u003e#5581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/bd517d2eb251e966aa192929cbc9afd1f7ae69c5\"\u003e\u003ccode\u003ebd517d2\u003c/code\u003e\u003c/a\u003e test: remove unnecessary loop variable capture\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/7c43155314c1ab52036814b1ffb702c2767b312a\"\u003e\u003ccode\u003e7c43155\u003c/code\u003e\u003c/a\u003e test: add coverage for TotalVotingPowerSafe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/eeb4a59930a0407f7581c2214f2f44eae65085df\"\u003e\u003ccode\u003eeeb4a59\u003c/code\u003e\u003c/a\u003e fix test cases in validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/161f7ac9fcb14293fce10e8160f44e671c520953\"\u003e\u003ccode\u003e161f7ac\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/a4e41a11fe723ba7b659460dcec1215769b9dda7\"\u003e\u003ccode\u003ea4e41a1\u003c/code\u003e\u003c/a\u003e fix linter errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/26dc17f5a8b33efeb4865ce2503b7bc792bc6a78\"\u003e\u003ccode\u003e26dc17f\u003c/code\u003e\u003c/a\u003e Add ValidateBlock tests for median time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c36a8edb32bdb8f0661db47ce2e64cd17fe61e08\"\u003e\u003ccode\u003ec36a8ed\u003c/code\u003e\u003c/a\u003e fix verbs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/dcf7e3b4bceddc1d0e55d67d1ac80e85fd9ea87c\"\u003e\u003ccode\u003edcf7e3b\u003c/code\u003e\u003c/a\u003e add test and fix a test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.17...v0.38.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.71.0 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.71.0...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 26.1.4+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v26.1.4...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ethereum/go-ethereum` from 1.15.5 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ethereum/go-ethereum/releases\"\u003egithub.com/ethereum/go-ethereum's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eEezo-Inlaid Circuitry (v1.17.0)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eThis is a feature release, with all accumulated development from the last 3 months. See below for the highlights.\u003c/p\u003e\n\u003cp\u003eNote that this release contains multiple critical security fixes, as well as many bug fixes, and is recommended for all users. However, if you are cautious about upgrades, you can also install v1.16.9 which has just the critical security fixes. Specifically, this release fixes \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-689v-6xwf-5jf3\"\u003eCVE-2026-26313\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-2gjw-fg97-vg3r\"\u003eCVE-2026-26314\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-m6j8-rg6r-7mv8\"\u003eCVE-2026-26315\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eWe recommend recreating your p2p node key after installing this update, which you can do by removing the \u003ccode\u003eDATADIR/geth/nodekey\u003c/code\u003e file before restarting geth. Note this will cause a change in the p2p node ID, which may break static peering setups.\u003c/p\u003e\n\u003ch2\u003eHighlights\u003c/h2\u003e\n\u003ch3\u003ePath-based Archive Node with Proofs\u003c/h3\u003e\n\u003cp\u003eThe path-based archive node can now serve proofs (via \u003ccode\u003eeth_getProof\u003c/code\u003e) for the state of older blocks.\u003c/p\u003e\n\u003cp\u003eYou can configure the block range that supports proving independently from other archive state availability. Specifically, you can use the \u003ccode\u003e--history.trienode\u003c/code\u003e command-line flag to set the amount of blocks for which tree nodes will be tracked.\u003c/p\u003e\n\u003cp\u003eThis feature is disabled by default. Note that state history cannot easily be recovered once deleted, as it can only be generated by processing blocks. However, you can enable trienode history (and/or state history) at any time to turn a full node into a partial archive node, keeping state from that point in time onwards.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32727\"\u003e#32727\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32621\"\u003e#32621\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33551\"\u003e#33551\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32981\"\u003e#32981\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33399\"\u003e#33399\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32913\"\u003e#32913\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33303\"\u003e#33303\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33584\"\u003e#33584\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33329\"\u003e#33329\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33681\"\u003e#33681\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33103\"\u003e#33103\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33098\"\u003e#33098\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33515\"\u003e#33515\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32247\"\u003e#32247\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEraE History Support\u003c/h3\u003e\n\u003cp\u003eGeth now suports the \u003ca href=\"https://redirect.github.com/eth-clients/e2store-format-specs/pull/16\"\u003eEraE\u003c/a\u003e file format, an archival format for post-merge chain history.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32157\"\u003e#32157\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33827\"\u003e#33827\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eOpenTelemetry Tracing\u003c/h3\u003e\n\u003cp\u003eOpenTelemetry tracing is now supported by the RPC server, including support for distributed tracing.\nWe have also added some tracing spans for block processing via the engine API, i.e. \u003ccode\u003eengine_newPayload\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33599\"\u003e#33599\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33452\"\u003e#33452\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAll Changes\u003c/h2\u003e\n\u003ch3\u003eGeth CLI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003egeth version-check\u003c/code\u003e subcommand has been removed. This command checked the geth website for signed vulnerability notices, and would tell if updates are necessary  (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33498\"\u003e#33498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThere is now a \u003ccode\u003e--miner.maxblobs\u003c/code\u003e command-line flag to set a limit on blobs included in built blocks (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33129\"\u003e#33129\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33302\"\u003e#33302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eGeth now supports continuous profiling with Grafana Pyroscope (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33623\"\u003e#33623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA rare bug that could halt block production in \u003ccode\u003egeth --dev\u003c/code\u003e mode was fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33146\"\u003e#33146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA new \u003ccode\u003e--rpc.rangelimit\u003c/code\u003e flag configures the maximum block range for \u003ccode\u003eeth_getLogs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33163\"\u003e#33163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --exitwhensynced\u003c/code\u003e will now set the \u003ccode\u003efinalized\u003c/code\u003e and \u003ccode\u003esafe\u003c/code\u003e block (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33038\"\u003e#33038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --ethstats\u003c/code\u003e now reports the newPayload processing time to the stats server (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33395\"\u003e#33395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA lot of minor issues in Geth's command-line flag processing have been fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33379\"\u003e#33379\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33338\"\u003e#33338\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33330\"\u003e#33330\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32999\"\u003e#32999\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33279\"\u003e#33279\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33252\"\u003e#33252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eevm blocktest\u003c/code\u003e command can now read filenames from stdin when no path is provided (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32824\"\u003e#32824\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFork Implementation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cf3d3ba4f7062fd2bbf2bda10972d528974e876\"\u003e\u003ccode\u003e0cf3d3b\u003c/code\u003e\u003c/a\u003e version: release go-ethereum v1.17.0 stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/9b78f45e337f01e66b505c35b74415751b2a0a28\"\u003e\u003ccode\u003e9b78f45\u003c/code\u003e\u003c/a\u003e crypto/secp256k1: fix coordinate check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c709c19b40f4b6655d7944c3fb0c36a14c6774d6\"\u003e\u003ccode\u003ec709c19\u003c/code\u003e\u003c/a\u003e eth/catalyst: add initial OpenTelemetry tracing for newPayload (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/550ca91b179493e5c0394ee644efed3deefb890e\"\u003e\u003ccode\u003e550ca91\u003c/code\u003e\u003c/a\u003e consensus/misc: hardening header verification (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33860\"\u003e#33860\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/a4b3898f9041fd7c77130dc17ba2b80441a998af\"\u003e\u003ccode\u003ea4b3898\u003c/code\u003e\u003c/a\u003e internal/telemetry: don't create internal spans without parents (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cba803fbafb12e9daaea53b76de847842ab3055\"\u003e\u003ccode\u003e0cba803\u003c/code\u003e\u003c/a\u003e eth/protocols/eth, eth/protocols/snap: delayed p2p message decoding (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33835\"\u003e#33835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ad88b68a467b6b3cb9d6a8a24f0ec74e8aa77565\"\u003e\u003ccode\u003ead88b68\u003c/code\u003e\u003c/a\u003e internal/download: show progress bar only if server gives length (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33842\"\u003e#33842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c50e5edfafe408d911f3cdd2191a6808dc95cb42\"\u003e\u003ccode\u003ec50e5ed\u003c/code\u003e\u003c/a\u003e cmd/geth, internal/telemetry: wire OpenTelemetry tracing via CLI flags (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33484\"\u003e#33484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/d8b92cb9e60fc8785c84f1afb35e64c9312eb35d\"\u003e\u003ccode\u003ed8b92cb\u003c/code\u003e\u003c/a\u003e rpc,internal/telemetry: fix deferred spanEnd to capture errors via pointer (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ac85a6f25449a7b96505637e18c988b3142d47bf\"\u003e\u003ccode\u003eac85a6f\u003c/code\u003e\u003c/a\u003e rlp: add back Iterator.Count, with fixes (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33841\"\u003e#33841\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ethereum/go-ethereum/compare/v1.15.5...v1.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.5 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.5...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/runc` from 1.1.14 to 1.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/releases\"\u003egithub.com/opencontainers/runc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003erunc v1.2.8 -- \u0026quot;鳥籠の中に囚われた屈辱を\u0026quot;\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nSome vendors were given a pre-release version of this release.\nThis public release includes two extra patches to fix regressions\ndiscovered very late during the embargo period and were thus not\nincluded in the pre-release versions. Please update to this version.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains fixes for three high-severity security\nvulnerabilities in runc (\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e, and\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e). All three vulnerabilities ultimately allow (through\ndifferent methods) for full container breakouts by bypassing runc's\nrestrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e is a more sophisticated variant of \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e,\nwhich was a flaw that allowed an attacker to trick runc into writing the LSM\nprocess labels for a container process into a dummy tmpfs file and thus not\napply the correct LSM labels to the container process. The mitigation we\napplied for \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e was fairly limited and effectively only caused\nrunc to verify that when we write LSM labels that those labels are actual\nprocfs files. This issue affects all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eStatic Linking Notices\u003c/h3\u003e\n\u003cp\u003eThe \u003ccode\u003erunc\u003c/code\u003e binary distributed with this release are \u003cem\u003estatically linked\u003c/em\u003e with\nthe following \u003ca href=\"https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html\"\u003eGNU LGPL-2.1\u003c/a\u003e licensed libraries, with \u003ccode\u003erunc\u003c/code\u003e acting\nas a \u0026quot;work that uses the Library\u0026quot;:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seccomp/libseccomp\"\u003elibseccomp\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/blob/main/CHANGELOG.md\"\u003egithub.com/opencontainers/runc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.2.8] - 2025-11-05\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e鳥籠の中に囚われた屈辱を\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003eThis release includes fixes for the following high-severity security issues:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.co...\n\n_Description has been truncated_","html_url":"https://github.com/PreFrontalCorporate/gaia/pull/108","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/PreFrontalCorporate%2Fgaia/issues/108","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/108/packages"},{"uuid":"4098655043","node_id":"PR_kwDONO4O987Ltub_","number":19,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go","M-stale"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-04T03:17:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T01:30:10.000Z","updated_at":"2026-05-04T03:17:48.000Z","time_to_close":3980848,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":8,"packages":[{"name":"github.com/consensys/gnark-crypto","old_version":"0.18.0","new_version":"0.18.1","repository_url":"https://github.com/consensys/gnark-crypto"},{"name":"github.com/docker/docker","old_version":"27.5.1+incompatible","new_version":"28.0.0+incompatible","repository_url":"https://github.com/docker/docker"},{"name":"github.com/quic-go/quic-go","old_version":"0.46.0","new_version":"0.57.0","repository_url":"https://github.com/quic-go/quic-go"},{"name":"github.com/quic-go/webtransport-go","old_version":"0.8.0","new_version":"0.10.0","repository_url":"https://github.com/quic-go/webtransport-go"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.34.0","new_version":"1.40.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"google.golang.org/grpc","old_version":"1.69.4","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 7 updates in the /tests directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto) | `0.18.0` | `0.18.1` |\n| [github.com/docker/docker](https://github.com/docker/docker) | `27.5.1+incompatible` | `28.0.0+incompatible` |\n| [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) | `0.46.0` | `0.57.0` |\n| [github.com/quic-go/webtransport-go](https://github.com/quic-go/webtransport-go) | `0.8.0` | `0.10.0` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.34.0` | `1.40.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.69.4` | `1.79.3` |\n\n\nUpdates `github.com/consensys/gnark-crypto` from 0.18.0 to 0.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/consensys/gnark-crypto/releases\"\u003egithub.com/consensys/gnark-crypto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.18.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\"\u003ehttps://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md\"\u003egithub.com/consensys/gnark-crypto's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[v0.18.1] - 2025-10-28\u003c/h2\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd CHANGELOG for 0.18.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003elimit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\n\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/fb04e95c3b2fca34f2cc773d3e8c1f930ede271a\"\u003e\u003ccode\u003efb04e95\u003c/code\u003e\u003c/a\u003e docs: add CHANGELOG for 0.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/0a4d04ae621bc19b6b40c6c7b8fa91f08b434533\"\u003e\u003ccode\u003e0a4d04a\u003c/code\u003e\u003c/a\u003e perf: limit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/consensys/gnark-crypto/compare/v0.18.0...v0.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/docker` from 27.5.1+incompatible to 28.0.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/docker/releases\"\u003egithub.com/docker/docker's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev28.0.0\u003c/h2\u003e\n\u003ch1\u003e28.0.0\u003c/h1\u003e\n\u003cp\u003eFor a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.0.0\"\u003edocker/cli, 28.0.0 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.0.0\"\u003emoby/moby, 28.0.0 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecated and removed features, see \u003ca href=\"https://github.com/docker/cli/blob/v28.0.0/docs/deprecated.md\"\u003eDeprecated Features\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eChanges to the Engine API, see \u003ca href=\"https://github.com/moby/moby/blob/v28.0.0/docs/api/version-history.md\"\u003eAPI version history\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ability to mount an image inside a container via \u003ccode\u003e--mount type=image\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48798\"\u003emoby/moby#48798\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eYou can also specify \u003ccode\u003e--mount type=image,image-subpath=[subpath],...\u003c/code\u003e option to mount a specific path from the image. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5755\"\u003edocker/cli#5755\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edocker images --tree\u003c/code\u003e now shows metadata badges. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5744\"\u003edocker/cli#5744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edocker load\u003c/code\u003e, \u003ccode\u003edocker save\u003c/code\u003e, and \u003ccode\u003edocker history\u003c/code\u003e now support a \u003ccode\u003e--platform\u003c/code\u003e flag allowing you to choose a specific platform for single-platform operations on multi-platform images. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5331\"\u003edocker/cli#5331\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eOOMScoreAdj\u003c/code\u003e to \u003ccode\u003edocker service create\u003c/code\u003e and \u003ccode\u003edocker stack\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5145\"\u003edocker/cli#5145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edocker buildx prune\u003c/code\u003e now supports \u003ccode\u003ereserved-space\u003c/code\u003e, \u003ccode\u003emax-used-space\u003c/code\u003e, \u003ccode\u003emin-free-space\u003c/code\u003e and \u003ccode\u003ekeep-bytes\u003c/code\u003e filters. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48720\"\u003emoby/moby#48720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWindows: Add support for running containerd as a child process of the daemon, instead of using a system-installed containerd. \u003ca href=\"https://redirect.github.com/moby/moby/pull/47955\"\u003emoby/moby#47955\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNetworking\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003edocker-proxy\u003c/code\u003e binary has been updated, older versions will not work with the updated \u003ccode\u003edockerd\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48132\"\u003emoby/moby#48132\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eClose a window in which the userland proxy (\u003ccode\u003edocker-proxy\u003c/code\u003e) could accept TCP connections, that would then fail after \u003ccode\u003eiptables\u003c/code\u003e NAT rules were set up.\u003c/li\u003e\n\u003cli\u003eThe executable \u003ccode\u003erootlesskit-docker-proxy\u003c/code\u003e is no longer used, it has been removed from the build and distribution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eDNS nameservers read from the host's \u003ccode\u003e/etc/resolv.conf\u003c/code\u003e are now always accessed from the host's network namespace. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48290\"\u003emoby/moby#48290\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eWhen the host's \u003ccode\u003e/etc/resolv.conf\u003c/code\u003e contains no nameservers and there are no \u003ccode\u003e--dns\u003c/code\u003e overrides, Google's DNS servers are no longer used, apart from by the default bridge network and in build containers.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eContainer interfaces in bridge and macvlan networks now use randomly generated MAC addresses. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48808\"\u003emoby/moby#48808\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eGratuitous ARP / Neighbour Advertisement messages will be sent when the interfaces are started so that, when IP addresses are reused, they're associated with the newly generated MAC address.\u003c/li\u003e\n\u003cli\u003eIPv6 addresses in the default bridge network are now IPAM-assigned, rather than being derived from the MAC address.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eThe deprecated OCI \u003ccode\u003eprestart\u003c/code\u003e hook is now only used by build containers. For other containers, network interfaces are added to the network namespace after task creation is complete, before the container task is started. \u003ca href=\"https://redirect.github.com/moby/moby/pull/47406\"\u003emoby/moby#47406\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a new \u003ccode\u003egw-priority\u003c/code\u003e option to \u003ccode\u003edocker run\u003c/code\u003e, \u003ccode\u003edocker container create\u003c/code\u003e, and \u003ccode\u003edocker network connect\u003c/code\u003e. This option will be used by the Engine to determine which network provides the default gateway for a container. On \u003ccode\u003edocker run\u003c/code\u003e, this option is only available through the extended \u003ccode\u003e--network\u003c/code\u003e syntax. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5664\"\u003edocker/cli#5664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a new netlabel \u003ccode\u003ecom.docker.network.endpoint.ifname\u003c/code\u003e to customize the interface name used when connecting a container to a network. It's supported by all built-in network drivers on Linux. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49155\"\u003emoby/moby#49155\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eWhen a container is created with multiple networks specified, there's no guarantee on the order networks will be connected to the container. So, if a custom interface name uses the same prefix as the auto-generated names, for example \u003ccode\u003eeth\u003c/code\u003e, the container might fail to start.\u003c/li\u003e\n\u003cli\u003eThe recommended practice is to use a different prefix, for example \u003ccode\u003een0\u003c/code\u003e, or a numerical suffix high enough to never collide, for example \u003ccode\u003eeth100\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThis label can be specified on \u003ccode\u003edocker network connect\u003c/code\u003e via the \u003ccode\u003e--driver-opt\u003c/code\u003e flag, for example \u003ccode\u003edocker network connect --driver-opt=com.docker.network.endpoint.ifname=foobar …\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eOr via the long-form \u003ccode\u003e--network\u003c/code\u003e flag on \u003ccode\u003edocker run\u003c/code\u003e, for example \u003ccode\u003edocker run --network=name=bridge,driver-opt=com.docker.network.endpoint.ifname=foobar …\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eIf a custom network driver reports capability \u003ccode\u003eGwAllocChecker\u003c/code\u003e then, before a network is created, it will get a \u003ccode\u003eGwAllocCheckerRequest\u003c/code\u003e with the network's options. The custom driver may then reply that no gateway IP address should be allocated. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49372\"\u003emoby/moby#49372\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePort publishing in bridge networks\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003edockerd\u003c/code\u003e now requires \u003ccode\u003eipset\u003c/code\u003e support in the Linux kernel. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48596\"\u003emoby/moby#48596\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eiptables\u003c/code\u003e and \u003ccode\u003eip6tables\u003c/code\u003e rules used to implement port publishing and network isolation have been extensively modified. This enables some of the following functional changes, and is a first step in refactoring to enable native \u003ccode\u003enftables\u003c/code\u003e support in a future release. \u003ca href=\"https://redirect.github.com/moby/moby/issues/48815\"\u003emoby/moby#48815\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIf it becomes necessary to downgrade to an earlier version of the daemon, some manual cleanup of the new rules will be necessary. The simplest and surest approach is to reboot the host, or use \u003ccode\u003eiptables -F\u003c/code\u003e and \u003ccode\u003eip6tables -F\u003c/code\u003e to flush all existing \u003ccode\u003eiptables\u003c/code\u003e rules from the \u003ccode\u003efilter\u003c/code\u003e table before starting the older version of the daemon. When that is not possible, run the following commands as root:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eiptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eiptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -j DOCKER; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -j DOCKER\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eIf you were previously running with the iptables filter-FORWARD policy set to \u003ccode\u003eACCEPT\u003c/code\u003e and need to restore access to unpublished ports, also delete per-bridge-network rules from the \u003ccode\u003eDOCKER\u003c/code\u003e chains. For example, \u003ccode\u003eiptables -D DOCKER ! -i docker0 -o docker0 -j DROP\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix a security issue that was allowing remote hosts to connect directly to a container on its published ports. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49325\"\u003emoby/moby#49325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a security issue that was allowing neighbor hosts to connect to ports mapped on a loopback address. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49325\"\u003emoby/moby#49325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/af898abe44662d9554fb15ee4d4a7307f1b8e315\"\u003e\u003ccode\u003eaf898ab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49495\"\u003e#49495\u003c/a\u003e from vvoland/update-buildkit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/d67f035d31bab71be3ae7dcaacba41f5a98aad11\"\u003e\u003ccode\u003ed67f035\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/buildkit v0.20.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/00ab386b5a2ebcf85b6a03b800f593c3a140c6a8\"\u003e\u003ccode\u003e00ab386\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49491\"\u003e#49491\u003c/a\u003e from vvoland/update-buildkit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/1fde8c46159cb41f584c01551f83cc21ecf924d9\"\u003e\u003ccode\u003e1fde8c4\u003c/code\u003e\u003c/a\u003e builder-next: fix cdi manager\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/cde9f0752e9c9f63b459e0247ff7df0b35488af3\"\u003e\u003ccode\u003ecde9f07\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/buildkit v0.20.0-rc3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/89e1429b65f194b25fe2e31088a4c4e69a651a47\"\u003e\u003ccode\u003e89e1429\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49490\"\u003e#49490\u003c/a\u003e from thaJeztah/dockerfile_linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/b2b55903d0bb54e11bfe22204c1e0b73627943eb\"\u003e\u003ccode\u003eb2b5590\u003c/code\u003e\u003c/a\u003e Dockerfile: fix linting warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/62bc5979908f152a8929ce44927cbdd929bf53ea\"\u003e\u003ccode\u003e62bc597\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49480\"\u003e#49480\u003c/a\u003e from thaJeztah/docs_api_1.48\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/670cd81423932b3e9103f0893c5d5e63a079ae58\"\u003e\u003ccode\u003e670cd81\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49485\"\u003e#49485\u003c/a\u003e from vvoland/c8d-list-panic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/a3628f3f8e806ede250e2c95f6757070c9fb56e4\"\u003e\u003ccode\u003ea3628f3\u003c/code\u003e\u003c/a\u003e docs/api: add documentation for API v1.48\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/docker/compare/v27.5.1...v28.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/quic-go/quic-go` from 0.46.0 to 0.57.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quic-go/quic-go/releases\"\u003egithub.com/quic-go/quic-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.57.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a fix for CVE-2025-64702 by reworking the HTTP/3 header processing logic:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBoth client and server now send their respective header size constraints using the SETTINGS_MAX_FIELD_SECTION_SIZE setting: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5431\"\u003e#5431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFor any QPACK-related errors, the correct error code (QPACK_DECOMPRESSION_FAILED) is now used: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5439\"\u003e#5439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eQPACK header parsing is now incremental (instead of parsing all headers at once), which is ~5-10% faster and reduces allocations: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5435\"\u003e#5435\u003c/a\u003e (and \u003ca href=\"https://redirect.github.com/quic-go/qpack/pull/67\"\u003equic-go/qpack#67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe server now sends a 431 status code (Request Header Fields Too Large) when encountering HTTP header fields exceeding the size constraint: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5452\"\u003e#5452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e \u003c/p\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ehttp3: \u003ccode\u003eTransport.MaxResponseBytes\u003c/code\u003e is now an \u003ccode\u003eint\u003c/code\u003e (before: \u003ccode\u003eint64\u003c/code\u003e): \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5433\"\u003e#5433\u003c/a\u003e\n \u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNotable Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eqlogwriter: fix storing of event schemas (this prevented qlog event logging from working for HTTP/3): \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5430\"\u003e#5430\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: errors sending the request are now ignored, instead, the response from the server is read (thereby allowing the client to read the status code, for example): \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5432\"\u003e#5432\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5426\"\u003equic-go/quic-go#5426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eqlogwriter: fix storing of event schemas by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5430\"\u003equic-go/quic-go#5430\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: send SETTINGS_MAX_FIELD_SECTION_SIZE in the SETTINGS frame by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5431\"\u003equic-go/quic-go#5431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: read response after encountering error sending the request by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5432\"\u003equic-go/quic-go#5432\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: make Transport.MaxResponseBytes an int by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5433\"\u003equic-go/quic-go#5433\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: add a benchmark for header parsing by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5435\"\u003equic-go/quic-go#5435\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate qpack to v0.6.0 by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5434\"\u003equic-go/quic-go#5434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: use QPACK_DECOMPRESSION_FAILED for QPACK errors by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5439\"\u003equic-go/quic-go#5439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd documentation for Conn.NextConnection by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5442\"\u003equic-go/quic-go#5442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eackhandler: don’t generate an immediate ACK for the first packet by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5447\"\u003equic-go/quic-go#5447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edon’t arm connection timer for connection ID retirement by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5449\"\u003equic-go/quic-go#5449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: add nodepass to list of projects by \u003ca href=\"https://github.com/yosebyte\"\u003e\u003ccode\u003e@​yosebyte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5448\"\u003equic-go/quic-go#5448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eqlogwriter: use synctest to make tests deterministic by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5454\"\u003equic-go/quic-go#5454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: limit size of decompressed headers by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5452\"\u003equic-go/quic-go#5452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yosebyte\"\u003e\u003ccode\u003e@​yosebyte\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5448\"\u003equic-go/quic-go#5448\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/quic-go/quic-go/compare/v0.56.0...v0.57.0\"\u003ehttps://github.com/quic-go/quic-go/compare/v0.56.0...v0.57.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.56.0\u003c/h2\u003e\n\u003cp\u003eThis release introduces qlog support for HTTP/3 (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5367\"\u003e#5367\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5372\"\u003e#5372\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5374\"\u003e#5374\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5375\"\u003e#5375\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5376\"\u003e#5376\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5381\"\u003e#5381\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5383\"\u003e#5383\u003c/a\u003e).\u003c/p\u003e\n\u003cp\u003eFor this, we completely changed how connection tracing works. Instead of a general-purpose \u003ccode\u003elogging.ConnectionTracer\u003c/code\u003e (which we removed entirely), we now have a qlog-specific tracer (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5356\"\u003e#5356\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5417\"\u003e#5417\u003c/a\u003e). quic-go users can now implement their own qlog events.\u003c/p\u003e\n\u003cp\u003eIt also removes the Prometheus-based metrics collection. Please comment on the tracking issue (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5294\"\u003e#5294\u003c/a\u003e) if you rely on metrics and are interested in seeing metrics brought back in a future release.\u003c/p\u003e\n\u003ch2\u003eNotable Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereplaced the unmaintained gojay with a custom, performance-optimized JSON encoder (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5353\"\u003e#5353\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5371\"\u003e#5371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/5b2d2129f8315da41e01eff0a847ab38a34e83a8\"\u003e\u003ccode\u003e5b2d212\u003c/code\u003e\u003c/a\u003e http3: limit size of decompressed headers (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5452\"\u003e#5452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/e80b378bc2674934ecc92225af66e6a0fbd3f703\"\u003e\u003ccode\u003ee80b378\u003c/code\u003e\u003c/a\u003e qlogwriter: use synctest to make tests deterministic (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5454\"\u003e#5454\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/d43c5894f8522279fc2cda80ba9a59c4e75d5e72\"\u003e\u003ccode\u003ed43c589\u003c/code\u003e\u003c/a\u003e README: add nodepass to list of projects (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5448\"\u003e#5448\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/ca2835de95c75aaddf20eca9008625f32907c940\"\u003e\u003ccode\u003eca2835d\u003c/code\u003e\u003c/a\u003e don’t arm connection timer for connection ID retirement (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5449\"\u003e#5449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/e84ebae666e9a2f4f1141ec89821225778569e62\"\u003e\u003ccode\u003ee84ebae\u003c/code\u003e\u003c/a\u003e ackhandler: don’t generate an immediate ACK for the first packet (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5447\"\u003e#5447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/d4d168f0f09377779ddeaabb4437b8cc247ef062\"\u003e\u003ccode\u003ed4d168f\u003c/code\u003e\u003c/a\u003e add documentation for Conn.NextConnection (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5442\"\u003e#5442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/4cdebbea6cf8e54def24906ee91389cb60705709\"\u003e\u003ccode\u003e4cdebbe\u003c/code\u003e\u003c/a\u003e http3: use QPACK_DECOMPRESSION_FAILED for QPACK errors (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5439\"\u003e#5439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/b7886d5c901700febc41c739bd93851eac5d315e\"\u003e\u003ccode\u003eb7886d5\u003c/code\u003e\u003c/a\u003e update qpack to v0.6.0 (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5434\"\u003e#5434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/2fc9705d14a5a5a269482544c032fcc53d696d92\"\u003e\u003ccode\u003e2fc9705\u003c/code\u003e\u003c/a\u003e http3: add a benchmark for header parsing (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5435\"\u003e#5435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/dafdd6f9b2b04cd67cf27805bf44ea616ac8f251\"\u003e\u003ccode\u003edafdd6f\u003c/code\u003e\u003c/a\u003e http3: make Transport.MaxResponseBytes an int (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quic-go/quic-go/compare/v0.46.0...v0.57.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/quic-go/webtransport-go` from 0.8.0 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quic-go/webtransport-go/releases\"\u003egithub.com/quic-go/webtransport-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003cp\u003eThis release updates webtransport-go to use the new API introduced in \u003ca href=\"https://github.com/quic-go/quic-go/releases/tag/v0.59.0\"\u003equic-go v0.59.0\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/221\"\u003e#221\u003c/a\u003e): Instead of \u0026quot;hijacking\u0026quot; streams from the HTTP/3 layer, the underlying QUIC connection is now owned by WebTransport, and webtransport-go dispatches incoming streams to either the HTTP/3 layer or an existing or new WebTransport session.\u003c/p\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplemented \u003ca href=\"https://www.ietf.org/archive/id/draft-ietf-webtrans-http3-14.html#section-3.3\"\u003eApplication Protocol Negotiation\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/190\"\u003e#190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ca href=\"https://datatracker.ietf.org/doc/html/draft-ietf-quic-reliable-stream-reset-07\"\u003eQUIC Stream Resets with Partial Delivery\u003c/a\u003e is now used to enforce reliable delivery of the WebTransport stream header: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/239\"\u003e#239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSession.ConnectionState\u003c/code\u003e was renamed to \u003ccode\u003eSessionState\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/189\"\u003e#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eStreamID\u003c/code\u003e method was removed from \u003ccode\u003eStream\u003c/code\u003e, \u003ccode\u003eSendStream\u003c/code\u003e and \u003ccode\u003eReceiveStream\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/226\"\u003e#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eServer\u003c/code\u003e now embeds the \u003ccode\u003ehttp3.Server\u003c/code\u003e as a pointer (instead of by value): \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/215\"\u003e#215\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eStream\u003c/code\u003e and the \u003ccode\u003eSendStream\u003c/code\u003e now expose a \u003ccode\u003eContext\u003c/code\u003e method: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/176\"\u003e#176\u003c/a\u003e (thanks to \u003ca href=\"https://github.com/Sicilica\"\u003e\u003ccode\u003e@​Sicilica\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDelayed streams for already closed sessions are immediately reset: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/235\"\u003e#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eSession\u003c/code\u003e context now uses the request or dial context, allowing the application to attach values to the context: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/199\"\u003e#199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhen a WebTransport session is closed, streams are reset using the \u003ccode\u003eWT_SESSION_GONE\u003c/code\u003e error. Stream \u003ccode\u003eRead\u003c/code\u003e and \u003ccode\u003eWrite\u003c/code\u003e now wait for the \u003ccode\u003eWT_CLOSE_SESSION\u003c/code\u003e capsule on the CONNECT stream to return a meaningful error: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/213\"\u003e#213\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNotable Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClosed sessions are now properly cleaned up: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/198\"\u003e#198\u003c/a\u003e (thanks to \u003ca href=\"https://github.com/rolaechea\"\u003e\u003ccode\u003e@​rolaechea\u003c/code\u003e\u003c/a\u003e), \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/230\"\u003e#230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSession errors are now properly propagated to the stream \u003ccode\u003eRead\u003c/code\u003e and \u003ccode\u003eWrite\u003c/code\u003e calls: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/207\"\u003e#207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe length limit for \u003ccode\u003eWT_CLOSE_SESSION\u003c/code\u003e capsules is now enforced: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/202\"\u003e#202\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe dial timeout is now respected while waiting for the server's HTTP/3 settings: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/216\"\u003e#216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eA 10ms deadline is applied before attempting the \u003ccode\u003eWT_CLOSE_SESSION\u003c/code\u003e capsule, preventing \u003ccode\u003eSession.Close\u003c/code\u003e from blocking any longer than 10ms: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/224\"\u003e#224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eerrors.Is\u003c/code\u003e error comparisons were fixed for \u003ccode\u003eStreamError\u003c/code\u003e and \u003ccode\u003eSessionError\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/204\"\u003e#204\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/205\"\u003e#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe underlying QUIC connection is now closed when establishing a WebTransport session fails: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/236\"\u003e#236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: remove 386 (32 bit x86) by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/180\"\u003equic-go/webtransport-go#180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-python from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/178\"\u003equic-go/webtransport-go#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/177\"\u003equic-go/webtransport-go#177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/179\"\u003equic-go/webtransport-go#179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use \u003ccode\u003ego mod tidy -diff\u003c/code\u003e to check for tidied \u003ccode\u003ego.mod\u003c/code\u003e by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/181\"\u003equic-go/webtransport-go#181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: fix setting of OS and Go envs for Codecov by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/183\"\u003equic-go/webtransport-go#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: enable Codecov test analysis by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/182\"\u003equic-go/webtransport-go#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate minimum Go version to 1.24, use 1.24 and 1.25 on CI by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/184\"\u003equic-go/webtransport-go#184\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate quic-go to v0.56.0 by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/185\"\u003equic-go/webtransport-go#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused code generation step from lint job by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/186\"\u003equic-go/webtransport-go#186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/187\"\u003equic-go/webtransport-go#187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: remove unfunded status section by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/188\"\u003equic-go/webtransport-go#188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexpose SendStream.Context and Stream.Context by \u003ca href=\"https://github.com/Sicilica\"\u003e\u003ccode\u003e@​Sicilica\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/176\"\u003equic-go/webtransport-go#176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ereplace Session.ConnectionState with Session.SessionState by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/189\"\u003equic-go/webtransport-go#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimplement application protocol negotiation by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/190\"\u003equic-go/webtransport-go#190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update Chrome to 142.0.7444.162 in interop test by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/192\"\u003equic-go/webtransport-go#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove header-based draft version negotiation by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/191\"\u003equic-go/webtransport-go#191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/9d448b125754f4c83064afb2c586221214e55eec\"\u003e\u003ccode\u003e9d448b1\u003c/code\u003e\u003c/a\u003e enable and use the QUIC Stream Resets with Partial Delivery extension (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/239\"\u003e#239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/128538a14311a6ca9f1518658dc6ceeabb6e1569\"\u003e\u003ccode\u003e128538a\u003c/code\u003e\u003c/a\u003e update quic-go to v0.59.0 (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/240\"\u003e#240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/5d8d3c4fd68741a7611bd680e525b04269638520\"\u003e\u003ccode\u003e5d8d3c4\u003c/code\u003e\u003c/a\u003e immediately reject streams for closed sessions (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/235\"\u003e#235\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/af56b7f689ccf0b889f46aed781507c433b7d9b3\"\u003e\u003ccode\u003eaf56b7f\u003c/code\u003e\u003c/a\u003e close client’s QUIC connection on WebTransport session close or failure (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/236\"\u003e#236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/093f58bbc35e4c1a544bb249c2ee1894f909c128\"\u003e\u003ccode\u003e093f58b\u003c/code\u003e\u003c/a\u003e move connection management to client and server (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/231\"\u003e#231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/9154cfc2990189d483a61b97226b5498e689b75d\"\u003e\u003ccode\u003e9154cfc\u003c/code\u003e\u003c/a\u003e ci: update golangci-lint to v2.7.2 (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/234\"\u003e#234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/acca67672e89df3c33b54aa607bdd59a5dd4a354\"\u003e\u003ccode\u003eacca676\u003c/code\u003e\u003c/a\u003e add a security policy (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/233\"\u003e#233\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/f2622e11ade1b815708062fe7c008e7c9a4bf979\"\u003e\u003ccode\u003ef2622e1\u003c/code\u003e\u003c/a\u003e remove stray TODO from Session (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/232\"\u003e#232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/58df38ab96d0ad6f6c67fb40d2bc4883e896be6a\"\u003e\u003ccode\u003e58df38a\u003c/code\u003e\u003c/a\u003e simplify stream buffering logic in the session manager (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/230\"\u003e#230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/3b5a3df73beed82d6709020164c0a8883af202ca\"\u003e\u003ccode\u003e3b5a3df\u003c/code\u003e\u003c/a\u003e README: add list of notable projects and a release policy (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/225\"\u003e#225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quic-go/webtransport-go/compare/v0.8.0...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.34.0 to 1.40.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003ego.opentelemetry.io/otel/exporters/zipkin\u003c/code\u003e.\nFor more information, see the \u003ca href=\"https://opentelemetry.io/blog/2025/deprecating-zipkin-exporters/\"\u003eOTel blog post deprecating the Zipkin exporter\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7670\"\u003e#7670\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.39.0/0.61.0/0.15.0/0.0.14] 2025-12-05\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGreatly reduce the cost of recording metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e using hashing for map keys. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7175\"\u003e#7175\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithInstrumentationAttributeSet\u003c/code\u003e option to \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e packages.\nThis provides a concurrent-safe and performant alternative to \u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e by accepting a pre-constructed \u003ccode\u003eattribute.Set\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7287\"\u003e#7287\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability for the Prometheus exporter in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e.\nCheck the \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus/internal/x\u003c/code\u003e package documentation for more information. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7345\"\u003e#7345\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7353\"\u003e#7353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd temporality selector functions \u003ccode\u003eDeltaTemporalitySelector\u003c/code\u003e, \u003ccode\u003eCumulativeTemporalitySelector\u003c/code\u003e, \u003ccode\u003eLowMemoryTemporalitySelector\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7434\"\u003e#7434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for simple log processor in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7548\"\u003e#7548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7459\"\u003e#7459\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/a3a5317c5caed1656fb5b301b66dfeb3c4c944e0\"\u003e\u003ccode\u003ea3a5317\u003c/code\u003e\u003c/a\u003e Release v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7859\"\u003e#7859\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/77785da545d67b38774891cbdd334368bfacdfd8\"\u003e\u003ccode\u003e77785da\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.1 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7858\"\u003e#7858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/56fa1c297bf71f0ada3dbf4574a45d0607812cc0\"\u003e\u003ccode\u003e56fa1c2\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/clipperhouse/uax29/v2 to v2.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7857\"\u003e#7857\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/298cbedf256b7a9ab3c21e41fc5e3e6d6e4e94aa\"\u003e\u003ccode\u003e298cbed\u003c/code\u003e\u003c/a\u003e Upgrade semconv use to v1.39.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3264bf171b1e6cd70f6be4a483f2bcb84eda6ccf\"\u003e\u003ccode\u003e3264bf1\u003c/code\u003e\u003c/a\u003e refactor: modernize code (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7850\"\u003e#7850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/fd5d030c0aa8b5bfe786299047bc914b5714d642\"\u003e\u003ccode\u003efd5d030\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/8d3b4cb2501dec9f1c5373123e425f109c43b8d2\"\u003e\u003ccode\u003e8d3b4cb\u003c/code\u003e\u003c/a\u003e chore(deps): update actions/cache action to v5.0.3 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7847\"\u003e#7847\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/91f7cadfcac363d67030f6913687c6dbbe086823\"\u003e\u003ccode\u003e91f7cad\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/timakin/bodyclose digest to 73d1f95 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7845\"\u003e#7845\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/fdad1eb7f350ee1f5fdb3d9a0c6855cc88ee9d75\"\u003e\u003ccode\u003efdad1eb\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c46d3bac181ddaaa83286e9ccf2cd9f7705fd3d9\"\u003e\u003ccode\u003ec46d3ba\u003c/code\u003e\u003c/a\u003e chore(deps): update golang.org/x/telemetry digest to fcf36f6 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7843\"\u003e#7843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.34.0...v1.40.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.41.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/ef5341b70697ceb55f904384bd982587224e8b0c\"\u003e\u003ccode\u003eef5341b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b999374650442ee37e9bbd97d6a11ad7ed999b98\"\u003e\u003ccode\u003eb999374\u003c/code\u003e\u003c/a\u003e acme: fix pebble subprocess output data race\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c247dead11de7671a21a6c5169555e2aa5313caa\"\u003e\u003ccode\u003ec247dea\u003c/code\u003e\u003c/a\u003e x509roots/fallback: store bundle certs directly in DER\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/1fda73153feef7b246f24005838c387e354e5e3b\"\u003e\u003ccode\u003e1fda731\u003c/code\u003e\u003c/a\u003e acme: increase pebble test waitForServer attempts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/1b4c3d2e8c8be172c6af8f2f72778e69e74d2e78\"\u003e\u003ccode\u003e1b4c3d2\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b903b535d3ef82fab12a9cc0fa50fccc396ced55\"\u003e\u003ccode\u003eb903b53\u003c/code\u003e\u003c/a\u003e acme: capture pebble test subprocess stdout/stderr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/459a9db11b9c43bb1d61722bfd371751d6de05c9\"\u003e\u003ccode\u003e459a9db\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/74e709ad8a8068445173aa5f3e8d7c89caf510c3\"\u003e\u003ccode\u003e74e709a\u003c/code\u003e\u003c/a\u003e ssh: add AlgorithmNegotiationError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b3790b8d914304c8187dc2c86800101c329d77cd\"\u003e\u003ccode\u003eb3790b8\u003c/code\u003e\u003c/a\u003e acme: fix TLSALPN01ChallengeCert for IP address identifiers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/1dc4269656dd23b2c4e71c51b8af6bc2b63eecb7\"\u003e\u003ccode\u003e1dc4269\u003c/code\u003e\u003c/a\u003e acme: add Pebble integration testing\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.69.4 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.69.4...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Layr-Labs/kona/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Layr-Labs/kona/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Layr-Labs%2Fkona/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"},{"uuid":"4098523334","node_id":"PR_kwDOMXf1d87LtTaQ","number":19,"state":"closed","title":"build(deps): Bump the go_modules group across 38 directories with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-19T00:46:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T00:46:21.000Z","updated_at":"2026-03-19T00:46:53.000Z","time_to_close":29,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"go_modules","update_count":11,"packages":[{"name":"cosmossdk.io/math","old_version":"1.3.0","new_version":"1.4.0","repository_url":"https://github.com/cosmos/cosmos-sdk"},{"name":"golang.org/x/crypto","old_version":"0.25.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"google.golang.org/grpc","old_version":"1.64.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/dvsekhvalnov/jose2go","old_version":"1.6.0","new_version":"1.7.0","repository_url":"https://github.com/dvsekhvalnov/jose2go"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.5","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the / directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 1 update in the /api directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 4 updates in the /client/v2 directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 1 update in the /collections directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /core directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /depinject directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /orm directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 2 updates in the /runtime/v2 directory: [golang.org/x/crypto](https://github.com/golang/crypto) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /server/v2 directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 7 updates in the /simapp directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 7 updates in the /simapp/v2 directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 2 updates in the /store directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) and [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft).\nBumps the go_modules group with 2 updates in the /store/v2 directory: [golang.org/x/crypto](https://github.com/golang/crypto) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 6 updates in the /tests directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `1.0.0-rc1` | `1.0.1` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 4 updates in the /tests/systemtests directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 4 updates in the /tools/confix directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 5 updates in the /tools/cosmovisor directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `0.38.8` | `0.38.21` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 4 updates in the /tools/hubl directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 5 updates in the /x/accounts directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/auth directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/authz directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/bank directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/circuit directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/consensus directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/distribution directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/epochs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/evidence directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/feegrant directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/gov directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/group directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/mint directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 4 updates in the /x/nft directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 5 updates in the /x/params directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/protocolpool directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/slashing directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/staking directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 2 updates in the /x/tx directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 7 updates in the /x/upgrade directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\n\nUpdates `cosmossdk.io/math` from 1.3.0 to 1.4.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/6b4557ddb8d865a68381a1b059ea9d5666e28710\"\u003e\u003ccode\u003e6b4557d\u003c/code\u003e\u003c/a\u003e chore: prepare log v1.4.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21197\"\u003e#21197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5a08833386eb358151038c0bc113124b57192269\"\u003e\u003ccode\u003e5a08833\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21189\"\u003e#21189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/655b30367576edae1afacfc95d99bd2f3d98a447\"\u003e\u003ccode\u003e655b303\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21190\"\u003e#21190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/cc25f59e6198a4acca5d120a86b34c561b476b45\"\u003e\u003ccode\u003ecc25f59\u003c/code\u003e\u003c/a\u003e ci: add compat check 052 x main (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21174\"\u003e#21174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5b7d8b6d82d4d5a50bdb37d8369600f5ef491b9b\"\u003e\u003ccode\u003e5b7d8b6\u003c/code\u003e\u003c/a\u003e test(stf/mock): Unmarshal with knowing the message type (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21178\"\u003e#21178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/641f9646510e5567a4a6b0011b44ac9eef6ab073\"\u003e\u003ccode\u003e641f964\u003c/code\u003e\u003c/a\u003e ci: attempt to fix goreleaser (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21194\"\u003e#21194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/a0fdab27b2425d5cb28b4fafa898e79e2acc4837\"\u003e\u003ccode\u003ea0fdab2\u003c/code\u003e\u003c/a\u003e test(server/v2): Update testdata prune options (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21192\"\u003e#21192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/4b4ec478dfd26edf3ddc906c757cea1cc8dac68f\"\u003e\u003ccode\u003e4b4ec47\u003c/code\u003e\u003c/a\u003e build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21191\"\u003e#21191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/feb0e077a953f5982c0a64743f849ae257223baa\"\u003e\u003ccode\u003efeb0e07\u003c/code\u003e\u003c/a\u003e feat: [ADR-071] Cryptography v2 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/18824\"\u003e#18824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/111a99995ea9d9732ffd66ac1cf4a214c77d3d8e\"\u003e\u003ccode\u003e111a999\u003c/code\u003e\u003c/a\u003e docs: rename v2 to di (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21181\"\u003e#21181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/log/v1.3.0...log/v1.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 1.0.0-rc1 to 1.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md#v101\"\u003eCHANGELOG\u003c/a\u003e for this release.\u003c/p\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.x/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this release.\u003c/p\u003e\n\u003cp\u003ePlease see more information on the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0/docs/guides/upgrades/v0.38-to-v1.0.md\"\u003eUpgrading from CometBFT v0.38 to v1.0\u003c/a\u003e guide.\u003c/p\u003e\n\u003ch2\u003ev1.0.0-rc2\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0-rc2/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this pre-release, but not yet officially released.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eFebruary 3, 2025\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis release fixes two security issues (ASA-2025-001, ASA-2025-002). Users are\nencouraged to upgrade as soon as possible.\u003c/p\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e Ban peer if it reports height lower than what was previously reported\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-22qq-3xwm-r5x4\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[consensus]\u003c/code\u003e Fix overflow in synchrony parameters in \u003ccode\u003elinux/amd64\u003c/code\u003e architecture.\nCap \u003ccode\u003eSynchronyParams.MessageDelay\u003c/code\u003e to 24hrs.\nCap \u003ccode\u003eSynchronyParams.Precision\u003c/code\u003e to 30 sec.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4815\"\u003e#4815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Fix JSON marshal of private key\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4772\"\u003e#4772\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e to use \u003ccode\u003edstMinPk\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4783\"\u003e#4783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[privval]\u003c/code\u003e Re-enable some sanity checks related to vote extensions\nwhen signing a vote\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3642\"\u003e#3642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Check that \u003ccode\u003ePart.Index\u003c/code\u003e equals \u003ccode\u003ePart.Proof.Index\u003c/code\u003e\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-r3r4-g7hq-pq4f\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[go/runtime]\u003c/code\u003e Bump minimum Go version to 1.23.5\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4888\"\u003e#4888\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eDecember 17, 2024\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis is a major release of CometBFT that includes several substantial changes\nthat aim to reduce bandwidth consumption, enable modularity, improve\nintegrators' experience and increase the velocity of the CometBFT development\nteam, including:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eProposer-Based Timestamps (PBTS) support. PBTS is a Byzantine fault-tolerant\nalgorithm used by CometBFT for computing block times.\nWhen activated on a chain, it replaces the pre-existing BFT-time algorithm.\nSee \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/spec/consensus/proposer-based-timestamp\"\u003espec\u003c/a\u003e doc for PBTS.\u003c/li\u003e\n\u003cli\u003eValidators now proactively communicate the block parts they already have so\nothers do not resend them, reducing amplification in the network and reducing\nbandwidth consumption.\u003c/li\u003e\n\u003cli\u003eAn experimental feature in the mempool that allows limiting the number of\npeers to which transactions are forwarded, allowing operators to optimize\ngossip-related bandwidth consumption further.\u003c/li\u003e\n\u003cli\u003eAn opt-in \u003ccode\u003enop\u003c/code\u003e mempool, which allows application developers to turn off all\u003c/li\u003e\n\u003c/ol\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d22299509a50140b74d81b113c4d78e4cf501994\"\u003e\u003ccode\u003ed222995\u003c/code\u003e\u003c/a\u003e chore: v1.0.1 release (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4907\"\u003e#4907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/f943aabc7b9201ea1089ff3381479929435ce424\"\u003e\u003ccode\u003ef943aab\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/0ee80cd609c7ae9fe856bdd1c6d38553fdae90ce\"\u003e\u003ccode\u003e0ee80cd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/481e46477a1445749b08067feb1bf009443f3d54\"\u003e\u003ccode\u003e481e464\u003c/code\u003e\u003c/a\u003e fix(pbts): hardening tests for overflows in \u003ccode\u003eSynchronyParams\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4816\"\u003e#4816\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d4a24c1dc311f45789c67b830d39a60a4c11eebc\"\u003e\u003ccode\u003ed4a24c1\u003c/code\u003e\u003c/a\u003e chore(deps): bump Go version to 1.23.5 (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4888\"\u003e#4888\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4890\"\u003e#4890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/8005556bb49c3c28b72c798a6879c425ac35c1c5\"\u003e\u003ccode\u003e8005556\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.69.4 to 1.70.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4885\"\u003e#4885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/629b28e65aff07f23e8109a06ed16dd128aa5e7b\"\u003e\u003ccode\u003e629b28e\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4884\"\u003e#4884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/e45feab5745ca4cb34b84794821753e661f9258e\"\u003e\u003ccode\u003ee45feab\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/build-push-action from 6.12.0 to 6.13.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4879\"\u003e#4879\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/9f97b87b2a3d35ec6e38d34d0645956ac76503b0\"\u003e\u003ccode\u003e9f97b87\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): fix marshaling FilePVKey (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4772\"\u003e#4772\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4870\"\u003e#4870\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/1fb89c8fce16be38555ee237ffa4716ce69e8d65\"\u003e\u003ccode\u003e1fb89c8\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4813\"\u003e#4813\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4871\"\u003e#4871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v1.0.0-rc1...v1.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.25.0 to 0.32.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.25.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.64.1 to 1.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.64.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/dvsekhvalnov/jose2go` from 1.6.0 to 1.7.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/0a0673dd7f2820a446de5b04b9094b2291d77d5d\"\u003e\u003ccode\u003e0a0673d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/34\"\u003e#34\u003c/a\u003e from dvsekhvalnov/issue-33-deflate-limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c3fff7c58065c848ba063d5cee07bd2c5908a14f\"\u003e\u003ccode\u003ec3fff7c\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/e51b47f33c704a31f1f7ad75120759e01de5fb4c\"\u003e\u003ccode\u003ee51b47f\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c7dde528a01b38c96652b99a5d2ed93d8932b39e\"\u003e\u003ccode\u003ec7dde52\u003c/code\u003e\u003c/a\u003e fixing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/a194baa4bb649000dd2266218155727c27297341\"\u003e\u003ccode\u003ea194baa\u003c/code\u003e\u003c/a\u003e added go versions and OSs to matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/f31cfc6b273af924c90bd5305b92ff5f9af10763\"\u003e\u003ccode\u003ef31cfc6\u003c/code\u003e\u003c/a\u003e fixing yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/1a4ba55b88b757ed4533884a014531d3f421462b\"\u003e\u003ccode\u003e1a4ba55\u003c/code\u003e\u003c/a\u003e added matrix to workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/d2baff2f0b24baab11bd34b8268c9aabfeb31914\"\u003e\u003ccode\u003ed2baff2\u003c/code\u003e\u003c/a\u003e go workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/b14c81a7a3261666e4ec76f04438f79d70211272\"\u003e\u003ccode\u003eb14c81a\u003c/code\u003e\u003c/a\u003e added limitation for deflate decompression stream\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/dvsekhvalnov/jose2go/compare/v1.6.0...v1.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.27.0 to 0.34.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd\"\u003e\u003ccode\u003e8da7ed1\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d\"\u003e\u003ccode\u003e2124140\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72\"\u003e\u003ccode\u003ee9d95ba\u003c/code\u003e\u003c/a\u003e http2: do not surface errors from a conn's idle timer expiring\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f\"\u003e\u003ccode\u003ec2be992\u003c/code\u003e\u003c/a\u003e quic: remember which remote connection IDs have been retired\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464\"\u003e\u003ccode\u003edfc720d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb\"\u003e\u003ccode\u003e8e66b04\u003c/code\u003e\u003c/a\u003e html: use strings.EqualFold instead of lowering ourselves\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46\"\u003e\u003ccode\u003eb935f7b\u003c/code\u003e\u003c/a\u003e html: avoid endless loop on error token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3\"\u003e\u003ccode\u003e9af49ef\u003c/code\u003e\u003c/a\u003e route: remove unused sizeof* consts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a\"\u003e\u003ccode\u003e6705db9\u003c/code\u003e\u003c/a\u003e quic: clean up crypto streams when dropping packet protection keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200\"\u003e\u003ccode\u003e4ef7588\u003c/code\u003e\u003c/a\u003e quic: handle ACK frame in packet which drops number space\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.27.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.64.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.64.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.27.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd\"\u003e\u003ccode\u003e8da7ed1\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d\"\u003e\u003ccode\u003e2124140\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72\"\u003e\u003ccode\u003ee9d95ba\u003c/code\u003e\u003c/a\u003e http2: do not surface errors from a conn's idle timer expiring\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f\"\u003e\u003ccode\u003ec2be992\u003c/code\u003e\u003c/a\u003e quic: remember which remote connection IDs have been retired\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464\"\u003e\u003ccode\u003edfc720d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb\"\u003e\u003ccode\u003e8e66b04\u003c/code\u003e\u003c/a\u003e html: use strings.EqualFold instead of lowering ourselves\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46\"\u003e\u003ccode\u003eb935f7b\u003c/code\u003e\u003c/a\u003e html: avoid endless loop on error token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3\"\u003e\u003ccode\u003e9af49ef\u003c/code\u003e\u003c/a\u003e route: remove unused sizeof* consts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a\"\u003e\u003ccode\u003e6705db9\u003c/code\u003e\u003c/a\u003e quic: clean up crypto streams when dropping packet protection keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200\"\u003e\u003ccode\u003e4ef7588\u003c/code\u003e\u003c/a\u003e quic: handle ACK frame in packet which drops number space\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.27.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cosmossdk.io/math` from 1.3.0 to 1.4.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/6b4557ddb8d865a68381a1b059ea9d5666e28710\"\u003e\u003ccode\u003e6b4557d\u003c/code\u003e\u003c/a\u003e chore: prepare log v1.4.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21197\"\u003e#21197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5a08833386eb358151038c0bc113124b57192269\"\u003e\u003ccode\u003e5a08833\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21189\"\u003e#21189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/655b30367576edae1afacfc95d99bd2f3d98a447\"\u003e\u003ccode\u003e655b303\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21190\"\u003e#21190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/cc25f59e6198a4acca5d120a86b34c561b476b45\"\u003e\u003ccode\u003ecc25f59\u003c/code\u003e\u003c/a\u003e ci: add compat check 052 x main (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21174\"\u003e#21174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5b7d8b6d82d4d5a50bdb37d8369600f5ef491b9b\"\u003e\u003ccode\u003e5b7d8b6\u003c/code\u003e\u003c/a\u003e test(stf/mock): Unmarshal with knowing the message type (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21178\"\u003e#21178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/641f9646510e5567a4a6b0011b44ac9eef6ab073\"\u003e\u003ccode\u003e641f964\u003c/code\u003e\u003c/a\u003e ci: attempt to fix goreleaser (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21194\"\u003e#21194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/a0fdab27b2425d5cb28b4fafa898e79e2acc4837\"\u003e\u003ccode\u003ea0fdab2\u003c/code\u003e\u003c/a\u003e test(server/v2): Update testdata prune options (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21192\"\u003e#21192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/4b4ec478dfd26edf3ddc906c757cea1cc8dac68f\"\u003e\u003ccode\u003e4b4ec47\u003c/code\u003e\u003c/a\u003e build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21191\"\u003e#21191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/feb0e077a953f5982c0a64743f849ae257223baa\"\u003e\u003ccode\u003efeb0e07\u003c/code\u003e\u003c/a\u003e feat: [ADR-071] Cryptography v2 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/18824\"\u003e#18824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/111a99995ea9d9732ffd66ac1cf4a214c77d3d8e\"\u003e\u003ccode\u003e111a999\u003c/code\u003e\u003c/a\u003e docs: rename v2 to di (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21181\"\u003e#21181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/log/v1.3.0...log/v1.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 1.0.0-rc1 to 1.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md#v101\"\u003eCHANGELOG\u003c/a\u003e for this release.\u003c/p\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.x/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this release.\u003c/p\u003e\n\u003cp\u003ePlease see more information on the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0/docs/guides/upgrades/v0.38-to-v1.0.md\"\u003eUpgrading from CometBFT v0.38 to v1.0\u003c/a\u003e guide.\u003c/p\u003e\n\u003ch2\u003ev1.0.0-rc2\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0-rc2/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this pre-release, but not yet officially released.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eFebruary 3, 2025\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis release fixes two security issues (ASA-2025-001, ASA-2025-002). Users are\nencouraged to upgrade as soon as possible.\u003c/p\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e Ban peer if it reports height lower than what was previously reported\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-22qq-3xwm-r5x4\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[consensus]\u003c/code\u003e Fix overflow in synchrony parameters in \u003ccode\u003elinux/amd64\u003c/code\u003e architecture.\nCap \u003ccode\u003eSynchronyParams.MessageDelay\u003c/code\u003e to 24hrs.\nCap \u003ccode\u003eSynchronyParams.Precision\u003c/code\u003e to 30 sec.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4815\"\u003e#4815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Fix JSON marshal of private key\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4772\"\u003e#4772\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e to use \u003ccode\u003edstMinPk\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4783\"\u003e#4783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[privval]\u003c/code\u003e Re-enable some sanity checks related to vote extensions\nwhen signing a vote\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3642\"\u003e#3642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Check that \u003ccode\u003ePart.Index\u003c/code\u003e equals \u003ccode\u003ePart.Proof.Index\u003c/code\u003e\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-r3r4-g7hq-pq4f\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[go/runtime]\u003c/code\u003e Bump minimum Go version to 1.23.5\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4888\"\u003e#4888\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eDecember 17, 2024\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis is a major release of CometBFT that includes several substantial changes\nthat aim to reduce bandwidth consumption, enable modularity, improve\nintegrators' experience and increase the velocity of the CometBFT development\nteam, including:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eProposer-Based Timestamps (PBTS) support. PBTS is a Byzantine fault-tolerant\nalgorithm used by CometBFT for computing block times.\nWhen activated on a chain, it replaces the pre-existing BFT-time algorithm.\nSee \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/spec/consensus/proposer-based-timestamp\"\u003espec\u003c/a\u003e doc for PBTS.\u003c/li\u003e\n\u003cli\u003eValidators now proactively communicate the block parts they already have so\nothers do not resend them, reducing amplification in the network and reducing\nbandwidth consumption.\u003c/li\u003e\n\u003cli\u003eAn experimental feature in the mempool that allows limiting the number of\npeers to which transactions are forwarded, allowing operators to optimize\ngossip-related bandwidth consumption further.\u003c/li\u003e\n\u003cli\u003eAn opt-in \u003ccode\u003enop\u003c/code\u003e mempool, which allows application developers to turn off all\u003c/li\u003e\n\u003c/ol\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d22299509a50140b74d81b113c4d78e4cf501994\"\u003e\u003ccode\u003ed222995\u003c/code\u003e\u003c/a\u003e chore: v1.0.1 release (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4907\"\u003e#4907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/f943aabc7b9201ea1089ff3381479929435ce424\"\u003e\u003ccode\u003ef943aab\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/0ee80cd609c7ae9fe856bdd1c6d38553fdae90ce\"\u003e\u003ccode\u003e0ee80cd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/481e46477a1445749b08067feb1bf009443f3d54\"\u003e\u003ccode\u003e481e464\u003c/code\u003e\u003c/a\u003e fix(pbts): hardening tests for overflows in \u003ccode\u003eSynchronyParams\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4816\"\u003e#4816\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d4a24c1dc311f45789c67b830d39a60a4c11eebc\"\u003e\u003ccode\u003ed4a24c1\u003c/code\u003e\u003c/a\u003e chore(deps): bump Go version to 1.23.5 (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4888\"\u003e#4888\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4890\"\u003e#4890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/8005556bb49c3c28b72c798a6879c425ac35c1c5\"\u003e\u003ccode\u003e8005556\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.69.4 to 1.70.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4885\"\u003e#4885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/629b28e65aff07f23e8109a06ed16dd128aa5e7b\"\u003e\u003ccode\u003e629b28e\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4884\"\u003e#4884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/e45feab5745ca4cb34b84794821753e661f9258e\"\u003e\u003ccode\u003ee45feab\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/build-push-action from 6.12.0 to 6.13.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4879\"\u003e#4879\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/9f97b87b2a3d35ec6e38d34d0645956ac76503b0\"\u003e\u003ccode\u003e9f97b87\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): fix marshaling FilePVKey (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4772\"\u003e#4772\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4870\"\u003e#4870\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/1fb89c8fce16be38555ee237ffa4716ce69e8d65\"\u003e\u003ccode\u003e1fb89c8\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4813\"\u003e#4813\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4871\"\u003e#4871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v1.0.0-rc1...v1.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.25.0 to 0.32.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.25.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.64.1 to 1.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/...\n\n_Description has been truncated_","html_url":"https://github.com/c6ai/cosmos-sdk/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/c6ai%2Fcosmos-sdk/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"}],"issue_packages":[{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-05-31T01:15:08.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4556209058","node_id":"PR_kwDOSX71h87hBsu4","number":1,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 2 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-31T01:31:49.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-31T01:15:08.000Z","updated_at":"2026-05-31T01:31:58.000Z","time_to_close":1001,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":2,"packages":[{"name":"github.com/nwaples/rardecode/v2","old_version":"2.1.0","new_version":"2.2.0","repository_url":"https://github.com/nwaples/rardecode"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"[//]: # (dependabot-start)\n⚠️  **Dependabot is rebasing this PR** ⚠️ \n\nRebasing might not happen immediately, so don't worry if this takes some time.\n\nNote: if you make any changes to this PR yourself, they will take precedence over the rebase.\n\n---\n\n[//]: # (dependabot-end)\n\nBumps the go_modules group with 2 updates in the / directory: [github.com/nwaples/rardecode/v2](https://github.com/nwaples/rardecode) and [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\n\nUpdates `github.com/nwaples/rardecode/v2` from 2.1.0 to 2.2.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/52fb4e825c936636f251f7e7deded39ab11df9a9\"\u003e\u003ccode\u003e52fb4e8\u003c/code\u003e\u003c/a\u003e allow max dictionary size to be set, with default now at 4GB\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/9f4b0d19121de2811fe5c85d6c8ab7dfd25c02d1\"\u003e\u003ccode\u003e9f4b0d1\u003c/code\u003e\u003c/a\u003e dont let the dictionary be larger than the unpacked file size\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/153fdf59e044b8dee9a24753f0c894f68c1a7bc1\"\u003e\u003ccode\u003e153fdf5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/nwaples/rardecode/issues/47\"\u003e#47\u003c/a\u003e from nwaples/bytereader\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/3f140e58be03c43a27b6d81cbdd77a7341bea179\"\u003e\u003ccode\u003e3f140e5\u003c/code\u003e\u003c/a\u003e document RarFS methods\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/b4fc922c0a09e60b630d88b7e08759053faf6678\"\u003e\u003ccode\u003eb4fc922\u003c/code\u003e\u003c/a\u003e change os.FileMode to fs.FileMode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/edb01e79aea4a993ff2cee32f8b389c3025a4dfd\"\u003e\u003ccode\u003eedb01e7\u003c/code\u003e\u003c/a\u003e add Seek support for uncompressed files\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/710bda24e364fe7c45462ec4b93304c224d4b565\"\u003e\u003ccode\u003e710bda2\u003c/code\u003e\u003c/a\u003e add initial Seek support for limitedReader\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/9deacfbfcaec2ea59b61dac917ae2d6aaa0f2e90\"\u003e\u003ccode\u003e9deacfb\u003c/code\u003e\u003c/a\u003e save offset in packetFileReader\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/4f0a7507425f4c54c15195b1cb81e70745812e73\"\u003e\u003ccode\u003e4f0a750\u003c/code\u003e\u003c/a\u003e change limitedReader to save offset internally\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nwaples/rardecode/commit/1c32663b05013841b98d51c2089a49b10a026028\"\u003e\u003ccode\u003e1c32663\u003c/code\u003e\u003c/a\u003e split volume into readerVolume and fileVolume\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/nwaples/rardecode/compare/v2.1.0...v2.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mayankjain0141/nixis/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/mayankjain0141/nixis/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mayankjain0141%2Fnixis/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"0.5.12","new_version":"0.5.15","update_type":"patch","path":null,"pr_created_at":"2026-05-19T02:22:28.000Z","version_change":"0.5.12 → 0.5.15","issue":{"uuid":"4473920402","node_id":"PR_kwDOLMiOMM7c5GPp","number":79,"state":"closed","title":"chore(deps): bump the common group across 1 directory with 12 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-25T22:43:27.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-19T02:22:28.000Z","updated_at":"2026-05-25T22:43:29.000Z","time_to_close":591659,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"common","update_count":12,"packages":[{"name":"github.com/docker/docker","old_version":"27.5.1+incompatible","new_version":"28.5.2+incompatible","repository_url":"https://github.com/docker/docker"},{"name":"github.com/gin-gonic/gin","old_version":"1.10.0","new_version":"1.12.0","repository_url":"https://github.com/gin-gonic/gin"},{"name":"github.com/klauspost/compress","old_version":"1.18.0","new_version":"1.18.6","repository_url":"https://github.com/klauspost/compress"},{"name":"github.com/samber/lo","old_version":"1.49.1","new_version":"1.53.0","repository_url":"https://github.com/samber/lo"},{"name":"github.com/spf13/afero","old_version":"1.14.0","new_version":"1.15.0","repository_url":"https://github.com/spf13/afero"},{"name":"github.com/spf13/cast","old_version":"1.7.1","new_version":"1.10.0","repository_url":"https://github.com/spf13/cast"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.15","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/urfave/cli/v3","old_version":"3.0.0-beta1","new_version":"3.9.0","repository_url":"https://github.com/urfave/cli"}],"path":null,"ecosystem":"go"},"body":"Bumps the common group with 8 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/docker/docker](https://github.com/docker/docker) | `27.5.1+incompatible` | `28.5.2+incompatible` |\n| [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) | `1.10.0` | `1.12.0` |\n| [github.com/klauspost/compress](https://github.com/klauspost/compress) | `1.18.0` | `1.18.6` |\n| [github.com/samber/lo](https://github.com/samber/lo) | `1.49.1` | `1.53.0` |\n| [github.com/spf13/afero](https://github.com/spf13/afero) | `1.14.0` | `1.15.0` |\n| [github.com/spf13/cast](https://github.com/spf13/cast) | `1.7.1` | `1.10.0` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.15` |\n| [github.com/urfave/cli/v3](https://github.com/urfave/cli) | `3.0.0-beta1` | `3.9.0` |\n\n\nUpdates `github.com/docker/docker` from 27.5.1+incompatible to 28.5.2+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/docker/releases\"\u003egithub.com/docker/docker's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev28.5.2\u003c/h2\u003e\n\u003ch2\u003e28.5.2\u003c/h2\u003e\n\u003cp\u003eFor a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.2\"\u003edocker/cli, 28.5.2 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.2\"\u003emoby/moby, 28.5.2 milestone\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!CAUTION]\nThis release contains fixes for three high-severity security vulnerabilities in runc:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eAll three vulnerabilities ultimately allow (through different methods) for full container breakouts by bypassing runc's restrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003ePackaging updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate runc to \u003ca href=\"https://github.com/opencontainers/runc/releases/tag/v1.3.3\"\u003ev1.3.3\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51394\"\u003emoby/moby#51394\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes and enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edockerd-rootless.sh: if slirp4netns is not installed, try using pasta (passt). \u003ca href=\"https://redirect.github.com/moby/moby/pull/51162\"\u003emoby/moby#51162\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Go runtime to \u003ca href=\"https://go.dev/doc/devel/release#go1.24.9\"\u003e1.24.9\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51387\"\u003emoby/moby#51387\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/docker/cli/pull/6613\"\u003edocker/cli#6613\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecations\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGo-SDK: cli/command/image/build: deprecate \u003ccode\u003eDefaultDockerfileName\u003c/code\u003e, \u003ccode\u003eDetectArchiveReader\u003c/code\u003e, \u003ccode\u003eWriteTempDockerfile\u003c/code\u003e, \u003ccode\u003eResolveAndValidateContextPath\u003c/code\u003e. These utilities were only used internally and will be removed in the next release. \u003ca href=\"https://redirect.github.com/docker/cli/pull/6610\"\u003edocker/cli#6610\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGo-SDK: cli/command/image/build: deprecate IsArchive utility. \u003ca href=\"https://redirect.github.com/docker/cli/pull/6560\"\u003edocker/cli#6560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGo-SDK: opts: deprecate \u003ccode\u003eValidateMACAddress\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/docker/cli/pull/6560\"\u003edocker/cli#6560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGo-SDK: opts: deprecate ListOpts.Delete(). \u003ca href=\"https://redirect.github.com/docker/cli/pull/6560\"\u003edocker/cli#6560\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev28.5.1\u003c/h2\u003e\n\u003ch2\u003e28.5.1\u003c/h2\u003e\n\u003cp\u003eFor a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.5.1\"\u003edocker/cli, 28.5.1 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.5.1\"\u003emoby/moby, 28.5.1 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecated and removed features, see \u003ca href=\"https://github.com/docker/cli/blob/v28.5.1/docs/deprecated.md\"\u003eDeprecated Features\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eChanges to the Engine API, see \u003ca href=\"https://github.com/moby/moby/blob/v28.5.1/docs/api/version-history.md\"\u003eAPI version history\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes and enhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate BuildKit to v0.25.1. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51137\"\u003emoby/moby#51137\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate Go runtime to \u003ca href=\"https://go.dev/doc/devel/release#go1.24.8\"\u003e1.24.8\u003c/a\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51133\"\u003emoby/moby#51133\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/docker/cli/pull/6541\"\u003edocker/cli#6541\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecations\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eapi/types/image: InspectResponse: deprecate \u003ccode\u003eParent\u003c/code\u003e and \u003ccode\u003eDockerVersion\u003c/code\u003e fields. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51105\"\u003emoby/moby#51105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eapi/types/plugin: deprecate \u003ccode\u003eConfig.DockerVersion\u003c/code\u003e field. \u003ca href=\"https://redirect.github.com/moby/moby/pull/51110\"\u003emoby/moby#51110\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/89c5e8fd66634b6128fc4c0e6f1236e2540e46e0\"\u003e\u003ccode\u003e89c5e8f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51396\"\u003e#51396\u003c/a\u003e from thaJeztah/28.x_backport_api_docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/9b93878308cae892878febfa52ff0b5799bea7b0\"\u003e\u003ccode\u003e9b93878\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51395\"\u003e#51395\u003c/a\u003e from thaJeztah/28.x_backport_rootless_reject\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/6178456763b64c360983c5a5ea35d4258171e91c\"\u003e\u003ccode\u003e6178456\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51398\"\u003e#51398\u003c/a\u003e from vvoland/51397-28.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/0cae4e5c8f76756eaba81dbd23ef57fccac3033f\"\u003e\u003ccode\u003e0cae4e5\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/buildkit v0.25.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/33cc06f6169ddba8f00c50a8c12494b54b1cb2fc\"\u003e\u003ccode\u003e33cc06f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51394\"\u003e#51394\u003c/a\u003e from vvoland/51393-28.x\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/d525277410726d5f99e46b8b2ba60ea9b7011afa\"\u003e\u003ccode\u003ed525277\u003c/code\u003e\u003c/a\u003e api/docs: remove BuildCache.Parent field for API v1.42 and up\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/2fbc51b4f895c75749896bf4655f7888a300bb9d\"\u003e\u003ccode\u003e2fbc51b\u003c/code\u003e\u003c/a\u003e dockerd-rootless.sh: reject DOCKERD_ROOTLESS_ROOTLESSKIT_NET=host\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/bd98008c078ab4a4d99f0c1577e641dbfe191cfd\"\u003e\u003ccode\u003ebd98008\u003c/code\u003e\u003c/a\u003e integration-cli: Adjust nofile limits\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/19675151a3d3b947501fcad1dcacbd00e6f4b23e\"\u003e\u003ccode\u003e1967515\u003c/code\u003e\u003c/a\u003e Dockerfile: update runc binary to v1.3.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/44896604b8f50d9ba38199c25ed2c7d2d40318a7\"\u003e\u003ccode\u003e4489660\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/51387\"\u003e#51387\u003c/a\u003e from thaJeztah/28.x_bump_go\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/docker/compare/v27.5.1...v28.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/gin-gonic/gin` from 1.10.0 to 1.12.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/releases\"\u003egithub.com/gin-gonic/gin's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e192ac89eefc1c30f7c97ae48a9ffb1c6f1c8c8bc: feat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4203\"\u003e#4203\u003c/a\u003e) (\u003ca href=\"https://github.com/takanuva15\"\u003e\u003ccode\u003e@​takanuva15\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e53410d2e07054369e0960fbe2eed97e1b9966f12: feat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4502\"\u003e#4502\u003c/a\u003e) (\u003ca href=\"https://github.com/raju-mechatronics\"\u003e\u003ccode\u003e@​raju-mechatronics\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eacc55e049e33b401e810dbd8c0d6dcb6b3ba2b05: feat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4423\"\u003e#4423\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e38e765119241d990705169bedb5002a29ae0cbd1: feat(context): implemented Delete method (\u003ca href=\"https://github.com/Spyder01\"\u003e\u003ccode\u003e@​Spyder01\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e771dcc6476d7bc6abb9ec0235ecefa4d38fe6fb0: feat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4420\"\u003e#4420\u003c/a\u003e) (\u003ca href=\"https://github.com/ldesauw\"\u003e\u003ccode\u003e@​ldesauw\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4dec17afdff48e8018c83618fbbe69fceeb2b41d: feat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4146\"\u003e#4146\u003c/a\u003e) (\u003ca href=\"https://github.com/wsyqn6\"\u003e\u003ccode\u003e@​wsyqn6\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed7776de7d444935ea4385999711bd6331a98fecb: feat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4145\"\u003e#4145\u003c/a\u003e) (\u003ca href=\"https://github.com/laurentcau\"\u003e\u003ccode\u003e@​laurentcau\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eb917b14ff9d189f16a7492be79d123a47806ee19: fix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/2169\"\u003e#2169\u003c/a\u003e) (\u003ca href=\"https://github.com/guonaihong\"\u003e\u003ccode\u003e@​guonaihong\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d1092b3b48addf6f9cd00fe274ec3bd14650eb: fix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4380\"\u003e#4380\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9914178584e42458ff7d23891463a880f58c9d86: fix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4472\"\u003e#4472\u003c/a\u003e) (\u003ca href=\"https://github.com/Nurysso\"\u003e\u003ccode\u003e@​Nurysso\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e2a794cd0b0faa7d829291375b27a3467ea972b0d: fix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4403\"\u003e#4403\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec3d5a28ed6d3849da820195b6774d212bcc038a9: fix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4422\"\u003e#4422\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5fad976b372e381312f8de69f0969f1284d229d3: fix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4415\"\u003e#4415\u003c/a\u003e) (\u003ca href=\"https://github.com/pawannn\"\u003e\u003ccode\u003e@​pawannn\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e63dd3e60cab89c27fb66bce1423bd268d52abad1: fix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4336\"\u003e#4336\u003c/a\u003e) (\u003ca href=\"https://github.com/MondayCha\"\u003e\u003ccode\u003e@​MondayCha\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a: fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e) (\u003ca href=\"https://github.com/dengaleev\"\u003e\u003ccode\u003e@​dengaleev\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e234a6d4c00cb77af9852aca0b8289745d5529b4b: fix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4373\"\u003e#4373\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e472d086af2acd924cb4b9d7be0525f7d790f69bc: fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e8e07d37c63e5536eb25f4af4c91eabeee4011fba: fix: Correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4511\"\u003e#4511\u003c/a\u003e) (\u003ca href=\"https://github.com/mahanadh\"\u003e\u003ccode\u003e@​mahanadh\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eba093d19477b896ac89a7fc3246af23d290b8e26: chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e) (\u003ca href=\"https://github.com/BobDu\"\u003e\u003ccode\u003e@​BobDu\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eb2b489dbf4826c2c630717a77fd5e42774625410: chore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/3359\"\u003e#3359\u003c/a\u003e) (\u003ca href=\"https://github.com/WeidiDeng\"\u003e\u003ccode\u003e@​WeidiDeng\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eecb3f7b5e2f3915bf1db240ed5eee572f8dbea36: chore(deps): upgrade golang.org/x/crypto to v0.45.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4449\"\u003e#4449\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eaf6e8b70b8261bb0c99ad094fe552ab92991620a: chore(deps): upgrade quic-go to v0.57.1 (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edb309081bc5c137b2aa15701ef53f7f19788da25: chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e) (\u003ca href=\"https://github.com/USA-RedDragon\"\u003e\u003ccode\u003e@​USA-RedDragon\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e26c3a628655cad2388380cb8102d6ce7d4875f3b: chore(response): prevent Flush() panic when \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4479\"\u003e#4479\u003c/a\u003e) (\u003ca href=\"https://github.com/Twacqwq\"\u003e\u003ccode\u003e@​Twacqwq\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5dd833f1f26de0eb30eae47b17e05ced2482dc41: chore: bump minimum Go version to 1.24 and update workflows (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4388\"\u003e#4388\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e39858a0859c914bd26948fa950477e11bd8d3823: refactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4352\"\u003e#4352\u003c/a\u003e) (\u003ca href=\"https://github.com/russcoss\"\u003e\u003ccode\u003e@​russcoss\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0048f645ee945c4db30593afdea10123e2c30a6: refactor(context): omit the return value names (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4395\"\u003e#4395\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e915e4c90d28ec4cffc6eb146e208ab5a65eac772: refactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4481\"\u003e#4481\u003c/a\u003e) (\u003ca href=\"https://github.com/pauloappbr\"\u003e\u003ccode\u003e@​pauloappbr\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e414de60574449457f3192a7a1d5528940db2836d: refactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4333\"\u003e#4333\u003c/a\u003e) (\u003ca href=\"https://github.com/cuiweixie\"\u003e\u003ccode\u003e@​cuiweixie\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59e9d4a794f12c4f9a6c7bed441b9644e5f6d99b: refactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4314\"\u003e#4314\u003c/a\u003e) (\u003ca href=\"https://github.com/1911860538\"\u003e\u003ccode\u003e@​1911860538\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3ab698dc5110af1977d57226e4995c57dd34c233: refactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4142\"\u003e#4142\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed1a15347b1e45a8ee816193d3578a93bfd73b70f: refactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4467\"\u003e#4467\u003c/a\u003e) (\u003ca href=\"https://github.com/zeek0x\"\u003e\u003ccode\u003e@​zeek0x\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee3118cc378d263454098924ebbde7e8d1dd2e904: refactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4392\"\u003e#4392\u003c/a\u003e) (\u003ca href=\"https://github.com/wanghaolong613\"\u003e\u003ccode\u003e@​wanghaolong613\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e488f8c3ffa579a8d19beb2bae95ff8ef36b3d53f: refactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4529\"\u003e#4529\u003c/a\u003e) (\u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e9968c4bf9d5a99edc3eee2c068a4c9160ece8915: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4389\"\u003e#4389\u003c/a\u003e) (\u003ca href=\"https://github.com/reddaisyy\"\u003e\u003ccode\u003e@​reddaisyy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea85ef5ce4d0cda8834c59c855068ed48b51192d1: refactor: use b.Loop() to simplify the code and improve performance (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4432\"\u003e#4432\u003c/a\u003e) (\u003ca href=\"https://github.com/efcking\"\u003e\u003ccode\u003e@​efcking\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e61b67de522a189b568aced4c5c16917c558e3387: ci(bot): increase frequency and group updates for dependencies (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4367\"\u003e#4367\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efb27ef26c2fdfe25344b4c039d8a53551f9e912c: ci(lint): refactor test assertions and linter configuration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4436\"\u003e#4436\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e93ff771e6dbf10e432864b30f3719ac5c84a4d4a: ci(sec): improve type safety and server organization in HTTP middleware (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4437\"\u003e#4437\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee88fc8927a52b74f55bec0351604a56ac0aa1c51: ci(sec): schedule Trivy security scans to run daily at midnight UTC (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4439\"\u003e#4439\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5e5ff3ace496a31b138b0820136a146bfb5de0ef: ci: replace vulnerability scanning workflow with Trivy integration (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4421\"\u003e#4421\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e00900fb3e1ea9dde33985a0e4f6afec793d5e786: ci: update CI workflows and standardize Trivy config quotes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4531\"\u003e#4531\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eae3f524974fc4f55d18c9e7fae4614503c015226: ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e) (\u003ca href=\"https://github.com/appleboy\"\u003e\u003ccode\u003e@​appleboy\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md\"\u003egithub.com/gin-gonic/gin's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eGin v1.12.0\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(render): add bson protocol (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4145\"\u003e#4145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add GetError and GetErrorSlice methods for error retrieval (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4502\"\u003e#4502\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(binding): add support for encoding.UnmarshalText in uri/query binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4203\"\u003e#4203\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(gin): add option to use escaped path (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4420\"\u003e#4420\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): add Protocol Buffers support to content negotiation (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4423\"\u003e#4423\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(context): implemented Delete method (\u003ca href=\"https://github.com/gin-gonic/gin/commit/38e7651\"\u003e#38e7651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efeat(logger): color latency (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4146\"\u003e#4146\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eperf(tree): reduce allocations in findCaseInsensitivePath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4417\"\u003e#4417\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(recovery): optimize line reading in stack function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4466\"\u003e#4466\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(path): replace regex with custom functions in redirectTrailingSlash (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4414\"\u003e#4414\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eperf(tree): optimize path parsing using strings.Count (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4246\"\u003e#4246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(context): always trust xff headers from unix socket (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/3359\"\u003e#3359\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(response): prevent Flush() panic when the underlying ResponseWriter does not implement \u003ccode\u003ehttp.Flusher\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4479\"\u003e#4479\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(recovery): smart error comparison (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4142\"\u003e#4142\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): replace hardcoded localhost IPs with constants (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4481\"\u003e#4481\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(utils): move util functions to utils.go (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4467\"\u003e#4467\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(binding): use maps.Copy for cleaner map handling (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4352\"\u003e#4352\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(context): using maps.Clone (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4333\"\u003e#4333\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor(ginS): use sync.OnceValue to simplify engine function (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4314\"\u003e#4314\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: replace magic numbers with named constants in bodyAllowedForStatus (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4529\"\u003e#4529\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erefactor: for loop can be modernized using range over int (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4392\"\u003e#4392\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(context): ClientIP handling for multiple X-Forwarded-For header values (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4472\"\u003e#4472\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): empty value error (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/2169\"\u003e#2169\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(recover): suppress http.ErrAbortHandler in recover (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4336\"\u003e#4336\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): literal colon routes not working with engine.Handler() (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4415\"\u003e#4415\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(gin): close os.File in RunFd to prevent resource leak (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4422\"\u003e#4422\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(response): refine hijack behavior for response lifecycle (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4373\"\u003e#4373\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(binding): improve empty slice/array handling in form binding (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4380\"\u003e#4380\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(debug): version mismatch (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4403\"\u003e#4403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: correct typos, improve documentation clarity, and remove dead code (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4511\"\u003e#4511\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBuild process updates / CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/pull/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eGin v1.11.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/73726dc606796a025971fe451f0aa6f1b9b847f6\"\u003e\u003ccode\u003e73726dc\u003c/code\u003e\u003c/a\u003e docs: update documentation to reflect Go version changes (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4552\"\u003e#4552\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/e292e5caa777bce70b66fe08c94cbe9cef3e2ec9\"\u003e\u003ccode\u003ee292e5c\u003c/code\u003e\u003c/a\u003e docs: document and finalize Gin v1.12.0 release (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4551\"\u003e#4551\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ae3f524974fc4f55d18c9e7fae4614503c015226\"\u003e\u003ccode\u003eae3f524\u003c/code\u003e\u003c/a\u003e ci: update Go version support to 1.25+ across CI and docs (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4550\"\u003e#4550\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/38534e2bf98a06e1f62d6b24384e90b5f78699bf\"\u003e\u003ccode\u003e38534e2\u003c/code\u003e\u003c/a\u003e chore(deps): bump golang.org/x/net from 0.50.0 to 0.51.0 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4548\"\u003e#4548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/472d086af2acd924cb4b9d7be0525f7d790f69bc\"\u003e\u003ccode\u003e472d086\u003c/code\u003e\u003c/a\u003e fix(tree): panic in findCaseInsensitivePathRec with RedirectFixedPath (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4535\"\u003e#4535\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/fb2583442c4d9bccb75e6d26f1aa6e7c01950db6\"\u003e\u003ccode\u003efb25834\u003c/code\u003e\u003c/a\u003e test(context): use http.StatusContinue constant instead of magic number 100 (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/6f1d5fe3cdb171a08928c3c9dd3fbcfc9ee1b521\"\u003e\u003ccode\u003e6f1d5fe\u003c/code\u003e\u003c/a\u003e test(render): add comprehensive error handling tests (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4541\"\u003e#4541\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/5c00df8afadd06cc5be530dde00fe6d9fa4a2e4a\"\u003e\u003ccode\u003e5c00df8\u003c/code\u003e\u003c/a\u003e fix(render): write content length in Data.Render (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4206\"\u003e#4206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/db309081bc5c137b2aa15701ef53f7f19788da25\"\u003e\u003ccode\u003edb30908\u003c/code\u003e\u003c/a\u003e chore(logger): allow skipping query string output (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4547\"\u003e#4547\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gin-gonic/gin/commit/ba093d19477b896ac89a7fc3246af23d290b8e26\"\u003e\u003ccode\u003eba093d1\u003c/code\u003e\u003c/a\u003e chore(binding): upgrade bson dependency to mongo-driver v2 (\u003ca href=\"https://redirect.github.com/gin-gonic/gin/issues/4549\"\u003e#4549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/gin-gonic/gin/compare/v1.10.0...v1.12.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/klauspost/compress` from 1.18.0 to 1.18.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/klauspost/compress/releases\"\u003egithub.com/klauspost/compress's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.18.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003es2: Fix amd64 stack frame corruption by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1145\"\u003eklauspost/compress#1145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egzhttp: Canonicalize ETag header by \u003ca href=\"https://github.com/justinmayhew\"\u003e\u003ccode\u003e@​justinmayhew\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1139\"\u003eklauspost/compress#1139\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: pool hash tables in Go encode paths to reduce allocations by \u003ca href=\"https://github.com/huynhanx03\"\u003e\u003ccode\u003e@​huynhanx03\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1143\"\u003eklauspost/compress#1143\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/justinmayhew\"\u003e\u003ccode\u003e@​justinmayhew\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1139\"\u003eklauspost/compress#1139\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/huynhanx03\"\u003e\u003ccode\u003e@​huynhanx03\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1143\"\u003eklauspost/compress#1143\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/thaJeztah\"\u003e\u003ccode\u003e@​thaJeztah\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1144\"\u003eklauspost/compress#1144\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.5...v1.18.6\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.5...v1.18.6\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ezstd: Fix crash when changing encoder dictionary with same ID by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1135\"\u003eklauspost/compress#1135\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ezstd: Default to full zero frames by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1134\"\u003eklauspost/compress#1134\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eflate: Clean up histogram order by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1133\"\u003eklauspost/compress#1133\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.4...v1.18.5\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.4...v1.18.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003egzhttp: Add zstandard to server handler wrapper by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1121\"\u003eklauspost/compress#1121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ezstd: Add ResetWithOptions to encoder/decoder by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1122\"\u003eklauspost/compress#1122\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egzhttp: preserve qvalue when extra parameters follow in Accept-Encoding by \u003ca href=\"https://github.com/analytically\"\u003e\u003ccode\u003e@​analytically\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1116\"\u003eklauspost/compress#1116\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/analytically\"\u003e\u003ccode\u003e@​analytically\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1116\"\u003eklauspost/compress#1116\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethaizone\"\u003e\u003ccode\u003e@​ethaizone\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1124\"\u003eklauspost/compress#1124\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/zwass\"\u003e\u003ccode\u003e@​zwass\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1125\"\u003eklauspost/compress#1125\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.2...v1.18.4\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.2...v1.18.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.3\u003c/h2\u003e\n\u003cp\u003eDownstream CVE-2025-61728\u003c/p\u003e\n\u003cp\u003eSee \u003ca href=\"https://redirect.github.com/golang/go/issues/77102\"\u003egolang/go#77102\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.2...v1.18.3\"\u003ehttps://github.com/klauspost/compress/compare/v1.18.2...v1.18.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.18.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eflate: Fix invalid encoding on level 9 with single value input by \u003ca href=\"https://github.com/klauspost\"\u003e\u003ccode\u003e@​klauspost\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1115\"\u003eklauspost/compress#1115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eflate: reduce stateless allocations by \u003ca href=\"https://github.com/RXamzin\"\u003e\u003ccode\u003e@​RXamzin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1106\"\u003eklauspost/compress#1106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.30.5 to 4.31.2 in the github-actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/klauspost/compress/pull/1111\"\u003eklauspost/compress#1111\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003ccode\u003ev1.18.1\u003c/code\u003e is marked \u0026quot;retracted\u0026quot; due to invalid flate/zip/gzip encoding.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/ac2f5e87a3089bd58c974ca53cef71c7aa8bf877\"\u003e\u003ccode\u003eac2f5e8\u003c/code\u003e\u003c/a\u003e docs: use unix line-endings for markdown files (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1144\"\u003e#1144\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/620d7b5cfbf89fbfdf69884f8a561a2981c25b11\"\u003e\u003ccode\u003e620d7b5\u003c/code\u003e\u003c/a\u003e s2: Fix amd64 stack frame corruption (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1145\"\u003e#1145\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/1b63f2fece784da6334068c671e3f94366bf9d68\"\u003e\u003ccode\u003e1b63f2f\u003c/code\u003e\u003c/a\u003e build(deps): bump the github-actions group with 2 updates (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1141\"\u003e#1141\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/3d86b893733380c370eba876f5beaaf63aeeea94\"\u003e\u003ccode\u003e3d86b89\u003c/code\u003e\u003c/a\u003e s2: pool hash tables in Go encode paths to reduce allocations (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1143\"\u003e#1143\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/15967def6890f5494829394274686436976c4936\"\u003e\u003ccode\u003e15967de\u003c/code\u003e\u003c/a\u003e gzhttp: Canonicalize ETag header (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1139\"\u003e#1139\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/c5e0077f50a3268a27b02816adc48ebfb535c65e\"\u003e\u003ccode\u003ec5e0077\u003c/code\u003e\u003c/a\u003e zstd: Fix encoder changing dictionary with same ID (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1135\"\u003e#1135\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/fd3f23e2d1d0fca18f38ee2dfedb73d0ca5b02e5\"\u003e\u003ccode\u003efd3f23e\u003c/code\u003e\u003c/a\u003e zstd: Default to full zero frames (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1134\"\u003e#1134\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/8233c587ef6e7b0f5168bfc08e63ea37e97b2d36\"\u003e\u003ccode\u003e8233c58\u003c/code\u003e\u003c/a\u003e flate: Clean up histogram order (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1133\"\u003e#1133\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/bcf0d1289c8df01178af919dd5d8ff83afaa5471\"\u003e\u003ccode\u003ebcf0d12\u003c/code\u003e\u003c/a\u003e build(deps): bump the github-actions group with 3 updates (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1132\"\u003e#1132\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/klauspost/compress/commit/cf758fe1c54e3049f302474d2a98afd3acc1a884\"\u003e\u003ccode\u003ecf758fe\u003c/code\u003e\u003c/a\u003e ci: Upgrade Go versions, clean up (\u003ca href=\"https://redirect.github.com/klauspost/compress/issues/1130\"\u003e#1130\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/klauspost/compress/compare/v1.18.0...v1.18.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/samber/lo` from 1.49.1 to 1.53.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/samber/lo/releases\"\u003egithub.com/samber/lo's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.53.0\u003c/h2\u003e\n\u003cp\u003eAnnouncing the latest release of \u003ccode\u003elo\u003c/code\u003e with lots of good gifts! 🎁\u003c/p\u003e\n\u003cp\u003e🌊 First, a big thanks to \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e for making lots of \u003cstrong\u003eperformance improvements\u003c/strong\u003e in the recent weeks.\u003c/p\u003e\n\u003cp\u003e🧪 Second, this release introduces a new \u003cstrong\u003e\u003ccode\u003esimd\u003c/code\u003e experimental package\u003c/strong\u003e. If you run on an amd64 architecture and a recent CPU, you can perform very fast operations thanks to SIMD CPU instructions.\n-\u0026gt; Documentation: \u003ca href=\"https://lo.samber.dev/docs/experimental/simd\"\u003ehttps://lo.samber.dev/docs/experimental/simd\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e💥 Third, this version adds \u003cstrong\u003e\u003ccode\u003e*Err\u003c/code\u003e variants\u003c/strong\u003e of many \u003ccode\u003elo\u003c/code\u003e helpers (like \u003cstrong\u003e\u003ccode\u003eMapErr\u003c/code\u003e, \u003ccode\u003eFlatMapErr\u003c/code\u003e, \u003ccode\u003eReduceErr\u003c/code\u003e, etc.\u003c/strong\u003e) whose callbacks can return an error and short-circuit execution when one occurs.\u003c/p\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nThe \u003ccode\u003esimd\u003c/code\u003e sub-package is considered \u003cem\u003enot stable\u003c/em\u003e. We might break the initial API based on developers' feedback in the coming months.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003chr /\u003e\n\u003ch2\u003eFeatures \u0026amp; improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: adding SIMD helpers by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/801\"\u003esamber/lo#801\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: adding Error variants: MapErr, FlatMapErr, ReduceErr... by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/823\"\u003esamber/lo#823\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: support for buffer iterator by \u003ca href=\"https://github.com/mimol91\"\u003e\u003ccode\u003e@​mimol91\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/824\"\u003esamber/lo#824\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add Take, TakeWhile, FilterTake, Window, and Sliding functions by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/760\"\u003esamber/lo#760\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add a Concat slice function. by \u003ca href=\"https://github.com/FGasper\"\u003e\u003ccode\u003e@​FGasper\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/714\"\u003esamber/lo#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add iterator slice helpers by \u003ca href=\"https://github.com/juliazadorozhnaya\"\u003e\u003ccode\u003e@​juliazadorozhnaya\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/791\"\u003esamber/lo#791\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat(it): adding loit.Concat by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/722\"\u003esamber/lo#722\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Allow Union/Intersect to take many lists by \u003ca href=\"https://github.com/frankywahl\"\u003e\u003ccode\u003e@​frankywahl\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/181\"\u003esamber/lo#181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Add Clone function to return shallow copy of slice collections by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/732\"\u003esamber/lo#732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: IntersectBy by \u003ca href=\"https://github.com/ghosx\"\u003e\u003ccode\u003e@​ghosx\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/653\"\u003esamber/lo#653\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Support Custom Assert by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/755\"\u003esamber/lo#755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Must support Custom error handler. by \u003ca href=\"https://github.com/RelicOfTesla\"\u003e\u003ccode\u003e@​RelicOfTesla\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/752\"\u003esamber/lo#752\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: WithoutNth handle non-comparable types by \u003ca href=\"https://github.com/urisimchoni\"\u003e\u003ccode\u003e@​urisimchoni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/774\"\u003esamber/lo#774\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: remove unnecessary type arguments in \u003ccode\u003eNewThrottle\u003c/code\u003e by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/773\"\u003esamber/lo#773\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: lo.IntersectBy + adding loit.IntersectBy + adding doc by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/739\"\u003esamber/lo#739\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: rename IsSortedByKey to IsSortedBy by \u003ca href=\"https://github.com/NathanBaulch\"\u003e\u003ccode\u003e@​NathanBaulch\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/735\"\u003esamber/lo#735\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(iter/tuples): support break iteration over Zip[By] seq by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/757\"\u003esamber/lo#757\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(it.Mode): align behavior with lo.Mode and ensure consistent slice… by \u003ca href=\"https://github.com/intojhanurag\"\u003e\u003ccode\u003e@​intojhanurag\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/711\"\u003esamber/lo#711\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: improve Clone function to preserve nilness and avoid liveness issues by \u003ca href=\"https://github.com/quexer\"\u003e\u003ccode\u003e@​quexer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/740\"\u003esamber/lo#740\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: reset n counter per iteration in it.Replace by \u003ca href=\"https://github.com/LikimiaD\"\u003e\u003ccode\u003e@​LikimiaD\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/799\"\u003esamber/lo#799\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: make Ellipsis operate on runes instead of bytes to prevent Unicode truncation by \u003ca href=\"https://github.com/veeceey\"\u003e\u003ccode\u003e@​veeceey\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/796\"\u003esamber/lo#796\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: correct \u003ccode\u003eDropByIndex\u003c/code\u003e handling of negative indices out of bounds by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/778\"\u003esamber/lo#778\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDeprecation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: remove helpers deprecated for more than 3y by \u003ca href=\"https://github.com/samber\"\u003e\u003ccode\u003e@​samber\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/810\"\u003esamber/lo#810\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePerformance improvements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Optimize UniqMap to reduce unnecessary slice preallocation by \u003ca href=\"https://github.com/ivolkoff\"\u003e\u003ccode\u003e@​ivolkoff\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/710\"\u003esamber/lo#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor(it): simplify DropLast, TrimSuffix, TrimPrefix and use range loops by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/782\"\u003esamber/lo#782\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebench: fix iterators to actually iterate in benchmarks by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/781\"\u003esamber/lo#781\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: simplify slice cut/trim prefix/suffix functions by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/787\"\u003esamber/lo#787\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: optimize Sliding by pre-allocating result capacity by \u003ca href=\"https://github.com/d-enk\"\u003e\u003ccode\u003e@​d-enk\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/samber/lo/pull/783\"\u003esamber/lo#783\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/cf6fb4f9b08c1d3d6e309581316f106dc30b458e\"\u003e\u003ccode\u003ecf6fb4f\u003c/code\u003e\u003c/a\u003e bump v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/56ef3beaf8adfea1908b094e49b3b639ea604aab\"\u003e\u003ccode\u003e56ef3be\u003c/code\u003e\u003c/a\u003e feat: support for buffer iterator (\u003ca href=\"https://redirect.github.com/samber/lo/issues/824\"\u003e#824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6a9f881ae1ff32a7c650464615d175ef4c26d833\"\u003e\u003ccode\u003e6a9f881\u003c/code\u003e\u003c/a\u003e :lipstick:\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/7f0c2e0297fc2fdffe9c69c254dee8d00f60c90a\"\u003e\u003ccode\u003e7f0c2e0\u003c/code\u003e\u003c/a\u003e feat: adding UnzipByErrX helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/af46a13bfce4ae037193c23e05866df8d79cd163\"\u003e\u003ccode\u003eaf46a13\u003c/code\u003e\u003c/a\u003e feat: adding RejectErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/6f42e74a117ce59882e92a9d4a5b05520d5dee33\"\u003e\u003ccode\u003e6f42e74\u003c/code\u003e\u003c/a\u003e doc: improve examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/ff0e293ce3dbde1e80a1b1eb059078aa7d1442c4\"\u003e\u003ccode\u003eff0e293\u003c/code\u003e\u003c/a\u003e feat: adding FilterErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/4bb58fd2c6d86bf54eb9408b8247d056b8f4a006\"\u003e\u003ccode\u003e4bb58fd\u003c/code\u003e\u003c/a\u003e feat: adding RepeatByErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/72a33aa3970554921210253dcce90540d6e34388\"\u003e\u003ccode\u003e72a33aa\u003c/code\u003e\u003c/a\u003e feat: adding FilterKeysErr + FilterValuesErr helpers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/samber/lo/commit/dd1d58e324c2277117dbdbfa86f409473eda5ece\"\u003e\u003ccode\u003edd1d58e\u003c/code\u003e\u003c/a\u003e feat: adding FindDuplicatesByErr helper\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/samber/lo/compare/v1.49.1...v1.53.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/afero` from 1.14.0 to 1.15.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/afero/releases\"\u003egithub.com/spf13/afero's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.15.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 6.5.1 to 6.5.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/479\"\u003espf13/afero#479\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLint by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/492\"\u003espf13/afero#492\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/494\"\u003espf13/afero#494\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.5.0 to 4.6.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/493\"\u003espf13/afero#493\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/480\"\u003espf13/afero#480\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.16 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/496\"\u003espf13/afero#496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esupport aliyun oss storage with third-party link by \u003ca href=\"https://github.com/messikiller\"\u003e\u003ccode\u003e@​messikiller\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/491\"\u003espf13/afero#491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.16 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/497\"\u003espf13/afero#497\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update x/test by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/502\"\u003espf13/afero#502\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/503\"\u003espf13/afero#503\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.6.0 to 4.7.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/505\"\u003espf13/afero#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.18 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/506\"\u003espf13/afero#506\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(gcsfs): update object not exist check logic by \u003ca href=\"https://github.com/ahkui\"\u003e\u003ccode\u003e@​ahkui\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/485\"\u003espf13/afero#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/508\"\u003espf13/afero#508\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.29.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/519\"\u003espf13/afero#519\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.4 to 3.29.7 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/524\"\u003espf13/afero#524\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.30.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/537\"\u003espf13/afero#537\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/536\"\u003espf13/afero#536\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.7.1 to 4.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/533\"\u003espf13/afero#533\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/527\"\u003espf13/afero#527\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update deps by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/538\"\u003espf13/afero#538\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: spelling errors (excpected -\u0026gt; expected, iself -\u0026gt; itself) by \u003ca href=\"https://github.com/MarkRosemaker\"\u003e\u003ccode\u003e@​MarkRosemaker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/523\"\u003espf13/afero#523\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/messikiller\"\u003e\u003ccode\u003e@​messikiller\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/491\"\u003espf13/afero#491\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ahkui\"\u003e\u003ccode\u003e@​ahkui\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/485\"\u003espf13/afero#485\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/MarkRosemaker\"\u003e\u003ccode\u003e@​MarkRosemaker\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/afero/pull/523\"\u003espf13/afero#523\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/afero/compare/v1.14.0...v1.15.0\"\u003ehttps://github.com/spf13/afero/compare/v1.14.0...v1.15.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/399bb34ad9fd8a252ad1d8bfaef96279b66dc774\"\u003e\u003ccode\u003e399bb34\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/523\"\u003e#523\u003c/a\u003e from MarkRosemaker/fix-spelling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/9b67716b675a40406678b57cefe0260699008630\"\u003e\u003ccode\u003e9b67716\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/538\"\u003e#538\u003c/a\u003e from spf13/deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/f5f4f7bd6427212efca35481b3b8c749bbf06243\"\u003e\u003ccode\u003ef5f4f7b\u003c/code\u003e\u003c/a\u003e chore: update deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/c245c4fc3df2e427d681479553a625c5ef0e1eb8\"\u003e\u003ccode\u003ec245c4f\u003c/code\u003e\u003c/a\u003e ci: update ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/85c49563d6385bdc0d6873937d5a28c4a5c6f5e6\"\u003e\u003ccode\u003e85c4956\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/527\"\u003e#527\u003c/a\u003e from spf13/dependabot/github_actions/actions/checkout...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/41206fdfdacaad1dffaad870ded6f497ae1b803a\"\u003e\u003ccode\u003e41206fd\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/checkout from 4.2.2 to 5.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/a583fade54a843a334e7595da81e287aa7adb63a\"\u003e\u003ccode\u003ea583fad\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/533\"\u003e#533\u003c/a\u003e from spf13/dependabot/github_actions/actions/dependen...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/673c03e4c1ba4512a26a91b42602f762a93647af\"\u003e\u003ccode\u003e673c03e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/536\"\u003e#536\u003c/a\u003e from spf13/dependabot/github_actions/actions/setup-go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/ac849f6a1820b81c052bf0a64e09fd10c8c7a3e0\"\u003e\u003ccode\u003eac849f6\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/afero/issues/537\"\u003e#537\u003c/a\u003e from spf13/dependabot/github_actions/github/codeql-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/afero/commit/9596fe84b763fd2e18267ac455a4cedba2655194\"\u003e\u003ccode\u003e9596fe8\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 3.29.7 to 3.30.1\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spf13/afero/compare/v1.14.0...v1.15.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/spf13/cast` from 1.7.1 to 1.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/spf13/cast/releases\"\u003egithub.com/spf13/cast's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/275\"\u003espf13/cast#275\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.18 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/277\"\u003espf13/cast#277\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/289\"\u003espf13/cast#289\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.7 to 3.29.10 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/296\"\u003espf13/cast#296\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.7.1 to 4.7.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/295\"\u003espf13/cast#295\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.2 to 5.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/293\"\u003espf13/cast#293\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.10 to 3.30.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/301\"\u003espf13/cast#301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/300\"\u003espf13/cast#300\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/dependency-review-action from 4.7.2 to 4.7.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/298\"\u003espf13/cast#298\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAlways return empty map instead of nil when conversion fails by \u003ca href=\"https://github.com/andig\"\u003e\u003ccode\u003e@​andig\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/283\"\u003espf13/cast#283\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/andig\"\u003e\u003ccode\u003e@​andig\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/283\"\u003espf13/cast#283\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cast/compare/v1.9.2...v1.10.0\"\u003ehttps://github.com/spf13/cast/compare/v1.9.2...v1.10.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: float string to number parsing by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/276\"\u003espf13/cast#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cast/compare/v1.9.1...v1.9.2\"\u003ehttps://github.com/spf13/cast/compare/v1.9.1...v1.9.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: indirection of typed nils by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/spf13/cast/pull/273\"\u003espf13/cast#273\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/spf13/cast/compare/v1.9.0...v1.9.1\"\u003ehttps://github.com/spf13/cast/compare/v1.9.0...v1.9.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.9.0\u003c/h2\u003e\n\u003ch2\u003eNotable new features 🎉\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCasting \u003cem\u003efrom\u003c/em\u003e type aliases is now supported for basic types\u003c/li\u003e\n\u003cli\u003eAdded generic functions: \u003ccode\u003eTo\u003c/code\u003e/\u003ccode\u003eToE\u003c/code\u003e, \u003ccode\u003eMust\u003c/code\u003e, \u003ccode\u003eToNumber\u003c/code\u003e/\u003ccode\u003eToNumberE\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eIncreased test coverage\u003c/li\u003e\n\u003cli\u003eConverting float numbers from string is now supported\u003c/li\u003e\n\u003c/ul\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!WARNING]\nSince cast now supports converting float values from strings, a related edge case behaves differently:\u003c/p\u003e\n\u003cp\u003eIn previous versions, attempting to convert an empty string to a float \u003cstrong\u003eresulted in an error\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eStarting with this version, the same operation \u003cstrong\u003eno longer raises an error\u003c/strong\u003e.\u003c/p\u003e\n\u003cp\u003eTo maintain consistency with the rest of the library, an empty string now converts to the float value \u003ccode\u003e0.0\u003c/code\u003e.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/fc73346bfc4e6597bc520fb6eea04360299e77d2\"\u003e\u003ccode\u003efc73346\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/283\"\u003e#283\u003c/a\u003e from andig/patch-1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/6002cff5a3bc7b67b52c91999bab9e202bb4388b\"\u003e\u003ccode\u003e6002cff\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/298\"\u003e#298\u003c/a\u003e from spf13/dependabot/github_actions/actions/dependen...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/c1c153d6ac13157b2144e3e0552b60c9b0f62bec\"\u003e\u003ccode\u003ec1c153d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/300\"\u003e#300\u003c/a\u003e from spf13/dependabot/github_actions/actions/setup-go...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/39beeac4bdd40af0083006e06b505d370eee56e7\"\u003e\u003ccode\u003e39beeac\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/301\"\u003e#301\u003c/a\u003e from spf13/dependabot/github_actions/github/codeql-ac...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/365e80cabc9ebdca18b3fc4e1f16cf664652b7b3\"\u003e\u003ccode\u003e365e80c\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 3.29.10 to 3.30.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/9f0f68b802eef3497be6e4ba9542d2bb409b884d\"\u003e\u003ccode\u003e9f0f68b\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5.5.0 to 6.0.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/d45dead50f72c7662de987b91c4944cee91395be\"\u003e\u003ccode\u003ed45dead\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/dependency-review-action from 4.7.2 to 4.7.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/004f51d2ec5beb17864a67ea0828cf96954b95ef\"\u003e\u003ccode\u003e004f51d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/293\"\u003e#293\u003c/a\u003e from spf13/dependabot/github_actions/actions/checkout...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/6458e07a1b5ec9f7dbd4884323a1406ef5cc0394\"\u003e\u003ccode\u003e6458e07\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/295\"\u003e#295\u003c/a\u003e from spf13/dependabot/github_actions/actions/dependen...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/spf13/cast/commit/970d9ea674b57f4b950f3fa76e51e94e710b72a1\"\u003e\u003ccode\u003e970d9ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/spf13/cast/issues/296\"\u003e#296\u003c/a\u003e from spf13/dependabot/github_actions/github/codeql-ac...\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/spf13/cast/compare/v1.7.1...v1.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/stretchr/testify` from 1.10.0 to 1.11.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/stretchr/testify/releases\"\u003egithub.com/stretchr/testify's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003cp\u003eThis release fixes \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1785\"\u003e#1785\u003c/a\u003e introduced in v1.11.0 where expected argument values implementing the stringer interface (\u003ccode\u003eString() string\u003c/code\u003e) with a method which mutates their value, when passed to mock.Mock.On (\u003ccode\u003em.On(\u0026quot;Method\u0026quot;, \u0026lt;expected\u0026gt;).Return()\u003c/code\u003e) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBackport \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1786\"\u003e#1786\u003c/a\u003e to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by \u003ca href=\"https://github.com/brackendawson\"\u003e\u003ccode\u003e@​brackendawson\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1788\"\u003estretchr/testify#1788\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\"\u003ehttps://github.com/stretchr/testify/compare/v1.11.0...v1.11.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eFunctional Changes\u003c/h3\u003e\n\u003cp\u003ev1.11.0 Includes a number of performance improvements.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eCall stack perf change for CallerInfo by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1614\"\u003estretchr/testify#1614\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eLazily render mock diff output on successful match by \u003ca href=\"https://github.com/mikeauclair\"\u003e\u003ccode\u003e@​mikeauclair\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1615\"\u003estretchr/testify#1615\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: check early in Eventually, EventuallyWithT, and Never by \u003ca href=\"https://github.com/cszczepaniak\"\u003e\u003ccode\u003e@​cszczepaniak\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1427\"\u003estretchr/testify#1427\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: add IsNotType by \u003ca href=\"https://github.com/bartventer\"\u003e\u003ccode\u003e@​bartventer\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1730\"\u003estretchr/testify#1730\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.JSONEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1754\"\u003estretchr/testify#1754\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert.YAMLEq: shortcut if same strings by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1755\"\u003estretchr/testify#1755\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eassert: faster and simpler isEmpty using reflect.Value.IsZero by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1761\"\u003estretchr/testify#1761\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esuite: faster methods filtering (internal refactor) by \u003ca href=\"https://github.com/dolmen\"\u003e\u003ccode\u003e@​dolmen\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1758\"\u003estretchr/testify#1758\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eassert.ErrorAs: log target type by \u003ca href=\"https://github.com/craig65535\"\u003e\u003ccode\u003e@​craig65535\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1345\"\u003estretchr/testify#1345\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix failure message formatting for Positive and Negative asserts in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1062\"\u003estretchr/testify#1062\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorIs message when error is nil but an error was expected by \u003ca href=\"https://github.com/tsioftas\"\u003e\u003ccode\u003e@​tsioftas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1681\"\u003estretchr/testify#1681\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix Subset/NotSubset when calling with mixed input types by \u003ca href=\"https://github.com/siliconbrain\"\u003e\u003ccode\u003e@​siliconbrain\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1729\"\u003estretchr/testify#1729\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove ErrorAs failure message when error is nil by \u003ca href=\"https://github.com/ccoVeille\"\u003e\u003ccode\u003e@​ccoVeille\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1734\"\u003estretchr/testify#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003emock.AssertNumberOfCalls: improve error msg by \u003ca href=\"https://github.com/3scalation\"\u003e\u003ccode\u003e@​3scalation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1743\"\u003estretchr/testify#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocumentation, Build \u0026amp; CI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edocs: Fix typo in README by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1688\"\u003estretchr/testify#1688\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace deprecated io/ioutil with io and os by \u003ca href=\"https://github.com/alexandear\"\u003e\u003ccode\u003e@​alexandear\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1684\"\u003estretchr/testify#1684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDocument consequences of calling t.FailNow() by \u003ca href=\"https://github.com/greg0ire\"\u003e\u003ccode\u003e@​greg0ire\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/stretchr/testify/pull/1710\"\u003estretchr/testify#1710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update docs for Unset \u003ca href=\"https://redirect.github.com/stretchr/testify/issues/1621\"\u003e#1621\u003c/a\u003e by \u003c...\n\n_Description has been truncated_","html_url":"https://github.com/wuxler/ruasec/pull/79","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/wuxler%2Fruasec/issues/79","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/79/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-05-18T19:47:29.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4472085103","node_id":"PR_kwDORfkK687czNcN","number":39,"state":"open","title":"chore(deps): bump the go_modules group across 5 directories with 4 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-18T19:47:29.000Z","updated_at":"2026-05-18T19:52:57.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":4,"packages":[{"name":"golang.org/x/net","old_version":"0.0.0-20211006190231-62292e806868","new_version":"0.38.0","repository_url":"https://github.com/golang/net"},{"name":"golang.org/x/sys","old_version":"0.0.0-20211006194710-c8a6f5223071","new_version":"0.31.0","repository_url":"https://github.com/golang/sys"},{"name":"golang.org/x/sys","old_version":"0.33.0","new_version":"0.44.0","repository_url":"https://github.com/golang/sys"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the /cmd/syft/internal/test/integration/test-fixtures/image-go-bin-arch-coverage directory: [golang.org/x/net](https://github.com/golang/net).\nBumps the go_modules group with 2 updates in the /syft/pkg/cataloger/golang/test-fixtures/go-source directory: [golang.org/x/sys](https://github.com/golang/sys) and [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure).\nBumps the go_modules group with 1 update in the /syft/pkg/cataloger/golang/test-fixtures/image-not-a-module directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\nBumps the go_modules group with 1 update in the /syft/pkg/cataloger/golang/test-fixtures/image-small directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\nBumps the go_modules group with 1 update in the /syft/pkg/cataloger/golang/test-fixtures/image-small-upx directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\n\nUpdates `golang.org/x/net` from 0.0.0-20211006190231-62292e806868 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/net/commits/v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/sys` from 0.0.0-20211006194710-c8a6f5223071 to 0.31.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/fb1facd76f95fa87c151018200ea5e4892ff115d\"\u003e\u003ccode\u003efb1facd\u003c/code\u003e\u003c/a\u003e windows: avoid uint16 overflow in NewNTUnicodeString\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/94ad893e1e59c1d079221324d38945d2aad8703f\"\u003e\u003ccode\u003e94ad893\u003c/code\u003e\u003c/a\u003e windows: add GetIfTable2Ex, GetIpInterface{Entry,Table}, GetUnicastIpAddressT...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/54fe89f8411576c06b345b341ca79a77d878a4ad\"\u003e\u003ccode\u003e54fe89f\u003c/code\u003e\u003c/a\u003e cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/df7d5d7b60641d17d87e2b50911124cb65f954fd\"\u003e\u003ccode\u003edf7d5d7\u003c/code\u003e\u003c/a\u003e unix: automatically remove container created by mkall.sh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/68a4a8e945b22751c1a619261b1d755372a1d5f7\"\u003e\u003ccode\u003e68a4a8e\u003c/code\u003e\u003c/a\u003e unix: avoid nil pointer dereference in Utime\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/690c91f6ecf3b3ef141ad2aedb1306a868b3a176\"\u003e\u003ccode\u003e690c91f\u003c/code\u003e\u003c/a\u003e unix: add CPUSetDynamic for systems with more than 1024 CPUs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/f33a730cd0c449cfd6f7106780c73052e96cc33d\"\u003e\u003ccode\u003ef33a730\u003c/code\u003e\u003c/a\u003e windows: support nil security descriptor on GetNamedSecurityInfo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/493d1725989a7a3f3582adfa68faf7207aec666b\"\u003e\u003ccode\u003e493d172\u003c/code\u003e\u003c/a\u003e cpu: add runtime import in cpu_darwin_arm64_other.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/2c2be756b97dee6d15aba69839acfbd4e0f3ccc5\"\u003e\u003ccode\u003e2c2be75\u003c/code\u003e\u003c/a\u003e windows: use syscall.SyscallN in Proc.Call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/a76ec62d6c5389e4fe51c659ba926bf71e471a67\"\u003e\u003ccode\u003ea76ec62\u003c/code\u003e\u003c/a\u003e cpu: roll back \u0026quot;use IsProcessorFeaturePresent to calculate ARM64 on windows\u0026quot;\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/sys/compare/v0.33.0...v0.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/sys` from 0.33.0 to 0.44.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/fb1facd76f95fa87c151018200ea5e4892ff115d\"\u003e\u003ccode\u003efb1facd\u003c/code\u003e\u003c/a\u003e windows: avoid uint16 overflow in NewNTUnicodeString\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/94ad893e1e59c1d079221324d38945d2aad8703f\"\u003e\u003ccode\u003e94ad893\u003c/code\u003e\u003c/a\u003e windows: add GetIfTable2Ex, GetIpInterface{Entry,Table}, GetUnicastIpAddressT...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/54fe89f8411576c06b345b341ca79a77d878a4ad\"\u003e\u003ccode\u003e54fe89f\u003c/code\u003e\u003c/a\u003e cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/df7d5d7b60641d17d87e2b50911124cb65f954fd\"\u003e\u003ccode\u003edf7d5d7\u003c/code\u003e\u003c/a\u003e unix: automatically remove container created by mkall.sh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/68a4a8e945b22751c1a619261b1d755372a1d5f7\"\u003e\u003ccode\u003e68a4a8e\u003c/code\u003e\u003c/a\u003e unix: avoid nil pointer dereference in Utime\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/690c91f6ecf3b3ef141ad2aedb1306a868b3a176\"\u003e\u003ccode\u003e690c91f\u003c/code\u003e\u003c/a\u003e unix: add CPUSetDynamic for systems with more than 1024 CPUs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/f33a730cd0c449cfd6f7106780c73052e96cc33d\"\u003e\u003ccode\u003ef33a730\u003c/code\u003e\u003c/a\u003e windows: support nil security descriptor on GetNamedSecurityInfo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/493d1725989a7a3f3582adfa68faf7207aec666b\"\u003e\u003ccode\u003e493d172\u003c/code\u003e\u003c/a\u003e cpu: add runtime import in cpu_darwin_arm64_other.go\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/2c2be756b97dee6d15aba69839acfbd4e0f3ccc5\"\u003e\u003ccode\u003e2c2be75\u003c/code\u003e\u003c/a\u003e windows: use syscall.SyscallN in Proc.Call\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/sys/commit/a76ec62d6c5389e4fe51c659ba926bf71e471a67\"\u003e\u003ccode\u003ea76ec62\u003c/code\u003e\u003c/a\u003e cpu: roll back \u0026quot;use IsProcessorFeaturePresent to calculate ARM64 on windows\u0026quot;\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/sys/compare/v0.33.0...v0.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/dmgoldstein1/syft/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/dmgoldstein1/syft/pull/39","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/dmgoldstein1%2Fsyft/issues/39","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/39/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-05-13T15:45:41.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4439249688","node_id":"PR_kwDOOQ8lIc7bL5Ju","number":11,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 13 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-14T22:24:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-13T15:45:41.000Z","updated_at":"2026-05-14T22:24:52.000Z","time_to_close":110349,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":13,"packages":[{"name":"github.com/anchore/quill","old_version":"0.5.1","new_version":"0.7.1","repository_url":"https://github.com/anchore/quill"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/buger/jsonparser","old_version":"1.1.1","new_version":"1.1.2","repository_url":"https://github.com/buger/jsonparser"},{"name":"github.com/cloudflare/circl","old_version":"1.3.8","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/docker/cli","old_version":"27.5.0+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-billy/v5","old_version":"5.6.1","new_version":"5.9.0","repository_url":"https://github.com/go-git/go-billy"},{"name":"github.com/go-git/go-git/v5","old_version":"5.13.1","new_version":"5.19.0","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-jose/go-jose/v4","old_version":"4.0.5","new_version":"4.1.4","repository_url":"https://github.com/go-jose/go-jose"},{"name":"github.com/opencontainers/runc","old_version":"1.1.14","new_version":"1.2.8","repository_url":"https://github.com/opencontainers/runc"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/anchore/quill](https://github.com/anchore/quill) | `0.5.1` | `0.7.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.1` | `1.1.2` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.8` | `1.6.3` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `27.5.0+incompatible` | `29.2.0+incompatible` |\n| [github.com/go-git/go-billy/v5](https://github.com/go-git/go-billy) | `5.6.1` | `5.9.0` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.13.1` | `5.19.0` |\n| [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) | `4.0.5` | `4.1.4` |\n| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.14` | `1.2.8` |\n\n\nUpdates `github.com/anchore/quill` from 0.5.1 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anchore/quill/releases\"\u003egithub.com/anchore/quill's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.7.1\u003c/h1\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow for unbounded reads for user controlled input [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/681\"\u003e#681\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAccount for excessive read limits in macho parsing [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/682\"\u003e#682\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eValidate developer log URL requests [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/680\"\u003e#680\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.7.0...v0.7.1\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch1\u003ev0.7.0\u003c/h1\u003e\n\u003ch3\u003eAdded Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edry run signing and notarization process before running in production [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/617\"\u003e#617\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/618\"\u003e#618\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTeamID is not set during signing [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/147\"\u003e#147\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/669\"\u003e#669\u003c/a\u003e \u003ca href=\"https://github.com/jflowers\"\u003e\u003ccode\u003e@​jflowers\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditional Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypo in install.sh help text [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/546\"\u003e#546\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/549\"\u003e#549\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003emigrate to latest tool ci patterns [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/670\"\u003e#670\u003c/a\u003e \u003ca href=\"https://github.com/spiffcs\"\u003e\u003ccode\u003e@​spiffcs\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate golang to v1.26 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/668\"\u003e#668\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003edoc: Add llms.txt for the 🤖 🕷️ [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/592\"\u003e#592\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eUpdate dependencies [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/627\"\u003e#627\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAdd periodic workflow to update certs [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/608\"\u003e#608\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003elint gh actions with zizmor [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/581\"\u003e#581\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate to go 1.24.x [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/543\"\u003e#543\u003c/a\u003e \u003ca href=\"https://github.com/westonsteimel\"\u003e\u003ccode\u003e@​westonsteimel\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate runners to ubuntu-24.04 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/541\"\u003e#541\u003c/a\u003e \u003ca href=\"https://github.com/kzantow\"\u003e\u003ccode\u003e@​kzantow\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.0\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/9cdb0823ea1d2c45dcc11557f8c5cd7291c75d29\"\u003e\u003ccode\u003e9cdb082\u003c/code\u003e\u003c/a\u003e do not allow for unbounded reads for user controlled input (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/681\"\u003e#681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/80cf3fe082678af0ec4f9f8dd93f39189d2dc1fe\"\u003e\u003ccode\u003e80cf3fe\u003c/code\u003e\u003c/a\u003e account for excessive read limits in macho parsing code (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/682\"\u003e#682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/e41d66a517c2dc20ad8e9fbccffbdc6ba5ef0020\"\u003e\u003ccode\u003ee41d66a\u003c/code\u003e\u003c/a\u003e validate developer log URL requests (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/899202c7eace3de7b3f4f7461bdfd1c4c38701db\"\u003e\u003ccode\u003e899202c\u003c/code\u003e\u003c/a\u003e update cred var values for p12 in release (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/679\"\u003e#679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/c73a37bd3b655633c1bd5466c2b2f65b2ae4032c\"\u003e\u003ccode\u003ec73a37b\u003c/code\u003e\u003c/a\u003e remove goreleaser config for release step + update tool refs (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/95e119c6cb513a69f6b45d3e86a9fbcb2c77b669\"\u003e\u003ccode\u003e95e119c\u003c/code\u003e\u003c/a\u003e persist credentials for git (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/02e765ab563811d7a3f0ede8df36977da92e8779\"\u003e\u003ccode\u003e02e765a\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/663\"\u003e#663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/530bb7f3ddf667d262891b79fb15c0147d81cf11\"\u003e\u003ccode\u003e530bb7f\u003c/code\u003e\u003c/a\u003e add test notarize command (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/3e8269c31055b1878a34c1954347254a42b37452\"\u003e\u003ccode\u003e3e8269c\u003c/code\u003e\u003c/a\u003e Set team ID during signing (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/12b3e8eb4c06d7582da9725fad3bc7c268872752\"\u003e\u003ccode\u003e12b3e8e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/blacktop/go-macho from 1.1.259 to 1.1.263 (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream` from 1.6.3 to 1.7.5\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/4599f78694cabb6853addabc6f92cb197fdb5647\"\u003e\u003ccode\u003e4599f78\u003c/code\u003e\u003c/a\u003e Release 2023-08-21\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/2a439ce0fdda24816a5ea71c083765af67e93599\"\u003e\u003ccode\u003e2a439ce\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/46f31d76b34aefbc66bbfb08d2ef7e22267d4b66\"\u003e\u003ccode\u003e46f31d7\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/525486a4cfa9b8364ea5346a526dd1f92d3edc76\"\u003e\u003ccode\u003e525486a\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b4e3176642b69937575f61f752f7d094fb6f4084\"\u003e\u003ccode\u003eb4e3176\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2189\"\u003e#2189\u003c/a\u003e from aws/feat-presign-polly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/30fe9b8de4c8538156248ae21b577a3e49170750\"\u003e\u003ccode\u003e30fe9b8\u003c/code\u003e\u003c/a\u003e Modify and Merge polly mod import\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/f6c1d4839450e7f99850868570ff0c47850b72ca\"\u003e\u003ccode\u003ef6c1d48\u003c/code\u003e\u003c/a\u003e sync polly presigner from main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/396f97a998c5fab5bc7ee7bd4297c6d0f42b661e\"\u003e\u003ccode\u003e396f97a\u003c/code\u003e\u003c/a\u003e Release 2023-08-18\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/08ab45438df135fc66f2eaf80032694ff2486db3\"\u003e\u003ccode\u003e08ab454\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/b50999bacbf780bf55d5c2b051c96e5c4467a5f6\"\u003e\u003ccode\u003eb50999b\u003c/code\u003e\u003c/a\u003e Update SDK's smithy-go dependency to v1.14.2\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/odb/v1.6.3...service/m2/v1.7.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/buger/jsonparser` from 1.1.1 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/buger/jsonparser/releases\"\u003egithub.com/buger/jsonparser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated travis to build for 1.13 to 1.15 by \u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003eeliminate 2 allocations in EachKey() by \u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003efix issue \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/150\"\u003e#150\u003c/a\u003e (in deleting case) by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efixing the oss-fuzz issue by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/227\"\u003ebuger/jsonparser#227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix parseInt overflow check false negative by \u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded bespoke error for null cases by \u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFuzzing: Add CIFuzz by \u003ca href=\"https://github.com/AdamKorcz\"\u003e\u003ccode\u003e@​AdamKorcz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/239\"\u003ebuger/jsonparser#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded latest versions of go to tests by \u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix EachKey pIdxFlags allocation by \u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on negative slice index in Delete with malformed JSON (GO-2026-4514) by \u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a69e7e01cd4ad67bdfd3ac2c080b9212af16f4b0\"\u003e\u003ccode\u003ea69e7e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/276\"\u003e#276\u003c/a\u003e from dbarrosop/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/d3eacc0bab779d6cf98221f5268828fff287876e\"\u003e\u003ccode\u003ed3eacc0\u003c/code\u003e\u003c/a\u003e fix: prevent panic on negative slice index in Delete with malformed JSON (GO-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/61b32cfdfa0f5d368ef7c7daef28ce12d538740f\"\u003e\u003ccode\u003e61b32cf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/241\"\u003e#241\u003c/a\u003e from unxcepted/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2181e8398f18397c9cacbaea9889314bb585e868\"\u003e\u003ccode\u003e2181e83\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/244\"\u003e#244\u003c/a\u003e from ScaleChamp/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/1510b5194182fc2fb898f28cdbceb42fd7258bfa\"\u003e\u003ccode\u003e1510b51\u003c/code\u003e\u003c/a\u003e Added latest versions of go to tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/6fc2e488ed3cc4f1f1debec3b0c70715bd7be6fd\"\u003e\u003ccode\u003e6fc2e48\u003c/code\u003e\u003c/a\u003e fix: eachkey allocation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a6f867eb7787e4ec54536b77b5d628ddf5c4f73d\"\u003e\u003ccode\u003ea6f867e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/239\"\u003e#239\u003c/a\u003e from AdamKorcz/cifuzz1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/cbc01fdbbe131706e89eeaaf0cd917760d8d3949\"\u003e\u003ccode\u003ecbc01fd\u003c/code\u003e\u003c/a\u003e Fuzzing: Add CIFuzz\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/dc92d6932a1272b4d8f485f798a88c3a75106256\"\u003e\u003ccode\u003edc92d69\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/228\"\u003e#228\u003c/a\u003e from jonomacd/null-handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2d9d6343e8621ddc18c70749663f74bc584c0de4\"\u003e\u003ccode\u003e2d9d634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/231\"\u003e#231\u003c/a\u003e from carsonip/fix-parseint-overflow-check\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.3.8 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.3.8...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 27.5.0+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v27.5.0...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-billy/v5` from 5.6.1 to 5.9.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-billy/releases\"\u003egithub.com/go-git/go-billy/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.9.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUse path.Clean instead of filepath.Clean in iofs.Open by \u003ca href=\"https://github.com/puerco\"\u003e\u003ccode\u003e@​puerco\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/197\"\u003ego-git/go-billy#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecate ChrootOS in favour of BoundOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/201\"\u003ego-git/go-billy#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneral Improvements by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/203\"\u003ego-git/go-billy#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eosfs: ChrootOS eval baseDir on creation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/205\"\u003ego-git/go-billy#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRun go-git tests as part of integration tests by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/206\"\u003ego-git/go-billy#206\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.8.0...v5.9.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.8.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/183\"\u003ego-git/go-billy#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Ensure Chmod behaviour across BoundOS and ChrootOS by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/187\"\u003ego-git/go-billy#187\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.7.0...v5.8.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.7.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for Chmod on billy.Filesystem by \u003ca href=\"https://github.com/bitfehler\"\u003e\u003ccode\u003e@​bitfehler\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/171\"\u003ego-git/go-billy#171\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/177\"\u003ego-git/go-billy#177\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.2...v5.7.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.6.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eEnable the \u003ccode\u003eiofs\u003c/code\u003e adapter to also return other interfaces from \u003ccode\u003eio/fs\u003c/code\u003e by \u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump dependencies by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/103\"\u003ego-git/go-billy#103\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/JAORMX\"\u003e\u003ccode\u003e@​JAORMX\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-git/go-billy/pull/102\"\u003ego-git/go-billy#102\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\"\u003ehttps://github.com/go-git/go-billy/compare/v5.6.1...v5.6.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/237e529bb8de61704047f71a5ab1c8e6676492f1\"\u003e\u003ccode\u003e237e529\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/206\"\u003e#206\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/04edb394b39979b5cbdec30ded6abdcb9f7786c5\"\u003e\u003ccode\u003e04edb39\u003c/code\u003e\u003c/a\u003e build: Add go-git integration test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/d8efefd33b2e8eeea1030e317bb0d71c5e918270\"\u003e\u003ccode\u003ed8efefd\u003c/code\u003e\u003c/a\u003e osfs: preserve empty ChrootOS base\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/07f2a0bf50e42d438d1d9d263c3c8a22598985b8\"\u003e\u003ccode\u003e07f2a0b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/205\"\u003e#205\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/25207c8468f1af656953cb5db7030aad5df1fe99\"\u003e\u003ccode\u003e25207c8\u003c/code\u003e\u003c/a\u003e build: Bump Go versions in workflows\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2fda229d9ac0cb5ba654ebc824cfbb90248f82d9\"\u003e\u003ccode\u003e2fda229\u003c/code\u003e\u003c/a\u003e osfs: ChrootOS eval baseDir on creation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/427b27f32f22de11498a682c65cd5060a01ec168\"\u003e\u003ccode\u003e427b27f\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-billy/issues/203\"\u003e#203\u003c/a\u003e from pjbgf/v5-improvements\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/7d5a23ece03edc171c1f63c8fa73f84c8428bf17\"\u003e\u003ccode\u003e7d5a23e\u003c/code\u003e\u003c/a\u003e chroot: Reject symlink loops\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/2c2287a233d2ee1e6cdce8956141f6d10505f3bf\"\u003e\u003ccode\u003e2c2287a\u003c/code\u003e\u003c/a\u003e util: avoid following symlinks in RemoveAll fallback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-billy/commit/cbd88e9a9a2d7fe1065bbe083d8bf0c5fd7290de\"\u003e\u003ccode\u003ecbd88e9\u003c/code\u003e\u003c/a\u003e Fix mount path handling\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-billy/compare/v5.6.1...v5.9.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.13.1 to 5.19.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.19.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.18.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2010\"\u003ego-git/go-git#2010\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Bump sha1cd and go-billy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2060\"\u003ego-git/go-git#2060\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ev5: Align object encoding with upstream by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2065\"\u003ego-git/go-git#2065\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.18.0...v5.19.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eplumbing: transport/http, Add support for followRedirects policy by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/2004\"\u003ego-git/go-git#2004\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.2...v5.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.17.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1941\"\u003ego-git/go-git#1941\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edotgit: skip writing pack files that already exist on disk by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1944\"\u003ego-git/go-git#1944\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e:warning: This release fixes a bug (\u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1942\"\u003ego-git/go-git#1942\u003c/a\u003e) that blocked some users from upgrading to \u003ccode\u003ev5.17.1\u003c/code\u003e. Thanks \u003ca href=\"https://github.com/pskrbasu\"\u003e\u003ccode\u003e@​pskrbasu\u003c/code\u003e\u003c/a\u003e for reporting it. :bow:\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.1...v5.17.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bc930f4cbe095a3e1d49273655f73fcef7d41a42\"\u003e\u003ccode\u003ebc930f4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/2065\"\u003e#2065\u003c/a\u003e from go-git/commit-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/d315264343cead712aa9eb56475c2ec96f5ecef1\"\u003e\u003ccode\u003ed315264\u003c/code\u003e\u003c/a\u003e plumbing: object, Reset object before decode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6e1d34890a4dae8a0df738e531234bd60b7e9b66\"\u003e\u003ccode\u003e6e1d348\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tree handling with upstream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e134ba34cf95ed0167e5b1df36a933d7bde9d02d\"\u003e\u003ccode\u003ee134ba3\u003c/code\u003e\u003c/a\u003e tests: Skip double checks in Git v2.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/1971422f6b1bec9176061b3293306981cfff981e\"\u003e\u003ccode\u003e1971422\u003c/code\u003e\u003c/a\u003e tests: Add git conformance tests for signing verification\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/a387aa8857a8fbba8e74b7f5485e9e030669ab5d\"\u003e\u003ccode\u003ea387aa8\u003c/code\u003e\u003c/a\u003e plumbing: object, Add ErrMalformedTag\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/f415670d906b5c6169d1fdc64f3f9f1d33eb6f9c\"\u003e\u003ccode\u003ef415670\u003c/code\u003e\u003c/a\u003e plumbing: object, Decode Tag headers via a state machine\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5b0cd38a62e2336bb5f1a2ad0eb8ac8f9e7b740e\"\u003e\u003ccode\u003e5b0cd38\u003c/code\u003e\u003c/a\u003e plumbing: object, Reject multi-signature commits at Verify\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/fe8ed6223a6079d9fd84d853362a996e7df175fb\"\u003e\u003ccode\u003efe8ed62\u003c/code\u003e\u003c/a\u003e plumbing: object, Align Tag.EncodeWithoutSignature with Commit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/98e337d5bdc4c0536a40ab7381b2231f7e0b15cd\"\u003e\u003ccode\u003e98e337d\u003c/code\u003e\u003c/a\u003e plumbing: object, Add support for Tag.SignatureSHA256\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.13.1...v5.19.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-jose/go-jose/v4` from 4.0.5 to 4.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-jose/go-jose/releases\"\u003egithub.com/go-jose/go-jose/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eFixes Panic in JWE decryption. See \u003ca href=\"https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\"\u003ehttps://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cp\u003eThis release drops Go 1.23 support as that Go release is no longer supported. With that, we can drop \u003ccode\u003ex/crypto\u003c/code\u003e and no longer have any external dependencies in go-jose outside of the standard library!\u003c/p\u003e\n\u003cp\u003eThis release fixes a bug where a critical b64 header was ignored if in an unprotected header. It is now rejected instead of ignored.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove Go 1.23 support by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/205\"\u003ego-jose/go-jose#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject JWS with an unprotected critical b64 header by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/210\"\u003ego-jose/go-jose#210\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003ego-jose v4.1.2 improves some documentation, errors, and removes the only 3rd-party dependency.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate go-jose documentation by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/198\"\u003ego-jose/go-jose#198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove dependency on testify by \u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove error message for invalid private keys by \u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/195\"\u003ego-jose/go-jose#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJWK unsupported error when unmarshalling by \u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd JSONWebKey type to makeJWERecipient by \u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etestutils/assert: remove True, Nil, NotNil by \u003ca href=\"https://github.com/jsha\"\u003e\u003ccode\u003e@​jsha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/202\"\u003ego-jose/go-jose#202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eDrop go-cmp dependency by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/186\"\u003ego-jose/go-jose#186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ejws: improve performance and allocations for ParseSignedCompact by \u003ca href=\"https://github.com/drakkan\"\u003e\u003ccode\u003e@​drakkan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/188\"\u003ego-jose/go-jose#188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd missing quote to unknown curve message \u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/170\"\u003e#170\u003c/a\u003e by \u003ca href=\"https://github.com/sudhanvaghebbale\"\u003e\u003ccode\u003e@​sudhanvaghebbale\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/189\"\u003ego-jose/go-jose#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix incorrect validation by \u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/192\"\u003ego-jose/go-jose#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRestore Go 1.23 compatibility by \u003ca href=\"https://github.com/anuraaga\"\u003e\u003ccode\u003e@​anuraaga\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/193\"\u003ego-jose/go-jose#193\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/drakkan\"\u003e\u003ccode\u003e@​drakkan\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/188\"\u003ego-jose/go-jose#188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sudhanvaghebbale\"\u003e\u003ccode\u003e@​sudhanvaghebbale\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/189\"\u003ego-jose/go-jose#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/192\"\u003ego-jose/go-jose#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anuraaga\"\u003e\u003ccode\u003e@​anuraaga\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/193\"\u003ego-jose/go-jose#193\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/0e59876635f3dbf46d7b5e97b52bb75a3f96e7d9\"\u003e\u003ccode\u003e0e59876\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/ddffdbcec8bdadea8e02a20bdf19239878228215\"\u003e\u003ccode\u003eddffdbc\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/213\"\u003e#213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/5348b9a4ba4559d2266b5af89fb5353cd1a5360a\"\u003e\u003ccode\u003e5348b9a\u003c/code\u003e\u003c/a\u003e Reject JWS with an unprotected critical b64 header (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/210\"\u003e#210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9153a5e4549c95e97a84e41e6375dc90eac54241\"\u003e\u003ccode\u003e9153a5e\u003c/code\u003e\u003c/a\u003e Bump actions/setup-python from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/208\"\u003e#208\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/2126e17f8791f6a234e63b2e4e8cb9fac8605c3a\"\u003e\u003ccode\u003e2126e17\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/209\"\u003e#209\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9860c65054c4821d1e7c22200422b04181f58ebc\"\u003e\u003ccode\u003e9860c65\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/206\"\u003e#206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/14239fdb15b88e1c42e41621ef24f1112cf31b5a\"\u003e\u003ccode\u003e14239fd\u003c/code\u003e\u003c/a\u003e Remove Go 1.23 support (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/205\"\u003e#205\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a16e15813482ca5e9a679b7f5bb42ddfae616d43\"\u003e\u003ccode\u003ea16e158\u003c/code\u003e\u003c/a\u003e Update CI to run on Go 1.24 and 1.25 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/204\"\u003e#204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a1565a41aa008ae6545e0f50a636d254de5b4596\"\u003e\u003ccode\u003ea1565a4\u003c/code\u003e\u003c/a\u003e testutils/assert: remove True, Nil, NotNil (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/3a80e136a96e747bf44049414eadc02828df4d33\"\u003e\u003ccode\u003e3a80e13\u003c/code\u003e\u003c/a\u003e jwe: accept non-pointer JSONWebKey in Recipient (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/200\"\u003e#200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.0.5...v4.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.0.0 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.0.0...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/runc` from 1.1.14 to 1.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/releases\"\u003egithub.com/opencontainers/runc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003erunc v1.2.8 -- \u0026quot;鳥籠の中に囚われた屈辱を\u0026quot;\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nSome vendors were given a pre-release version of this release.\nThis public release includes two extra patches to fix regressions\ndiscovered very late during the embargo period and were thus not\nincluded in the pre-release versions. Please update to this version.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains fixes for three high-severity security\nvulnerabilities in runc (\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e, and\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e). All three vulnerabilities ultimately allow (through\ndifferent methods) for full container breakouts by bypassing runc's\nrestrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https:...\n\n_Description has been truncated_","html_url":"https://github.com/coutureb/goreleaser/pull/11","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/coutureb%2Fgoreleaser/issues/11","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/11/packages"}},{"old_version":"0.5.11","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-05-08T09:10:15.000Z","version_change":"0.5.11 → 0.5.14","issue":{"uuid":"4405205855","node_id":"PR_kwDOI9w5KM7ZeCaq","number":3911,"state":"open","title":"Bump the go_modules group across 1 directory with 9 updates","user":"dependabot[bot]","labels":["needs-ok-to-test","dependencies","Stale","go"],"assignees":[],"locked":false,"comments_count":4,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-05-08T09:10:15.000Z","updated_at":"2026-05-24T05:39:57.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":9,"packages":[{"name":"github.com/go-jose/go-jose/v3","old_version":"3.0.3","new_version":"3.0.5","repository_url":"https://github.com/go-jose/go-jose"},{"name":"github.com/opencontainers/selinux","old_version":"1.11.0","new_version":"1.13.0","repository_url":"https://github.com/opencontainers/selinux"},{"name":"github.com/sigstore/fulcio","old_version":"1.4.3","new_version":"1.8.5","repository_url":"https://github.com/sigstore/fulcio"},{"name":"github.com/sigstore/rekor","old_version":"1.2.2","new_version":"1.5.0","repository_url":"https://github.com/sigstore/rekor"},{"name":"github.com/sigstore/sigstore","old_version":"1.8.2","new_version":"1.10.3"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14"},{"name":"golang.org/x/crypto","old_version":"0.31.0","new_version":"0.46.0"},{"name":"golang.org/x/net","old_version":"0.25.0","new_version":"0.48.0"},{"name":"google.golang.org/grpc","old_version":"1.61.1","new_version":"1.78.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the /roles/copy_container/files/copy-quay directory: [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose), [github.com/opencontainers/selinux](https://github.com/opencontainers/selinux), [github.com/sigstore/fulcio](https://github.com/sigstore/fulcio) and [github.com/sigstore/rekor](https://github.com/sigstore/rekor).\n\nUpdates `github.com/go-jose/go-jose/v3` from 3.0.3 to 3.0.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-jose/go-jose/releases\"\u003egithub.com/go-jose/go-jose/v3's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev3.0.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eFixes \u003ca href=\"https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\"\u003ehttps://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eWe recommend migrating from v3 to v4, and we will stop support v3 in the near future.\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v3.0.4...v3.0.5\"\u003ehttps://github.com/go-jose/go-jose/compare/v3.0.4...v3.0.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev3.0.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eBackport fix for GHSA-c6gw-w398-hv78 CVE-2025-27144\n\u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/174\"\u003ego-jose/go-jose#174\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.4\"\u003ehttps://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.4\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/be2f6548701d4ba561cd61c7d4a2f1289b66c273\"\u003e\u003ccode\u003ebe2f654\u003c/code\u003e\u003c/a\u003e ci: update Go versions for GHA workflows (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/221\"\u003e#221\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/02464163e1e891db85257cb8860978a1c0226016\"\u003e\u003ccode\u003e0246416\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/5253038e3b5f64a2200b5b6c72107bf9823f4358\"\u003e\u003ccode\u003e5253038\u003c/code\u003e\u003c/a\u003e Backport fix 167 to v3 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/174\"\u003e#174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/047dc99758ca176080217a26d0f8a95a3350e7fb\"\u003e\u003ccode\u003e047dc99\u003c/code\u003e\u003c/a\u003e CI: Update github actions and go version (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/173\"\u003e#173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/0f017e9bc3fd4ee0ca9171c131d6eb3d196ab05b\"\u003e\u003ccode\u003e0f017e9\u003c/code\u003e\u003c/a\u003e Revert \u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/26\"\u003e#26\u003c/a\u003e (ignore unsupported JWKs in Sets) (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/131\"\u003e#131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/3e2bbef724ae666f9e6691659bd46bc0c3e0c7aa\"\u003e\u003ccode\u003e3e2bbef\u003c/code\u003e\u003c/a\u003e Unmarshal jwk keys with unsupported key type or algorithm into empty … (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/26\"\u003e#26\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/go-jose/go-jose/compare/v3.0.3...v3.0.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/selinux` from 1.11.0 to 1.13.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/selinux/releases\"\u003egithub.com/opencontainers/selinux's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.13.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSwitch to golangci-lint v2 by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/230\"\u003eopencontainers/selinux#230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/233\"\u003eopencontainers/selinux#233\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/234\"\u003eopencontainers/selinux#234\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ekeyring: fix typo in EACCES check by \u003ca href=\"https://github.com/cyphar\"\u003e\u003ccode\u003e@​cyphar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/235\"\u003eopencontainers/selinux#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Go 1.25, drop go 1.23, bump golangci-lint by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/236\"\u003eopencontainers/selinux#236\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eselinux: migrate to pathrs-lite procfs API by \u003ca href=\"https://github.com/cyphar\"\u003e\u003ccode\u003e@​cyphar\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/237\"\u003eopencontainers/selinux#237\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/opencontainers/selinux/compare/v1.12.0...v1.13.0\"\u003ehttps://github.com/opencontainers/selinux/compare/v1.12.0...v1.13.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.12.0\u003c/h2\u003e\n\u003cp\u003eThis release removes deprecated functions from the \u003ccode\u003elabel\u003c/code\u003e package,\nand improves documentation and error reporting of \u003ccode\u003eSetCreateKey\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eVERSION: remove by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/217\"\u003eopencontainers/selinux#217\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: add AlmaLinux 8, CentOS Stream 9, and Fedora by \u003ca href=\"https://github.com/AkihiroSuda\"\u003e\u003ccode\u003e@​AkihiroSuda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/221\"\u003eopencontainers/selinux#221\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: install git-core by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/224\"\u003eopencontainers/selinux#224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eCI: add openSUSE Tumbleweed by \u003ca href=\"https://github.com/AkihiroSuda\"\u003e\u003ccode\u003e@​AkihiroSuda\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/223\"\u003eopencontainers/selinux#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump Go version, deps, fix some linter issues... by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/218\"\u003eopencontainers/selinux#218\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003elabel: remove deprecated stuff by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/228\"\u003eopencontainers/selinux#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove SetKeyCreate error reporting, fix test flakes by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/227\"\u003eopencontainers/selinux#227\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/opencontainers/selinux/compare/v1.11.1...v1.12.0\"\u003ehttps://github.com/opencontainers/selinux/compare/v1.11.1...v1.12.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.11.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eBump to v1.11.0 by \u003ca href=\"https://github.com/rhatdan\"\u003e\u003ccode\u003e@​rhatdan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/197\"\u003eopencontainers/selinux#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix some error by \u003ca href=\"https://github.com/ningmingxiao\"\u003e\u003ccode\u003e@​ningmingxiao\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/200\"\u003eopencontainers/selinux#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update Go 1.21 support by \u003ca href=\"https://github.com/michalbiesek\"\u003e\u003ccode\u003e@​michalbiesek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/202\"\u003eopencontainers/selinux#202\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtend \u003ccode\u003ebuild-cross\u003c/code\u003e target with \u003ccode\u003eriscv64\u003c/code\u003e arch by \u003ca href=\"https://github.com/michalbiesek\"\u003e\u003ccode\u003e@​michalbiesek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/201\"\u003eopencontainers/selinux#201\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove nolint annotations for unix errno comparisons by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/203\"\u003eopencontainers/selinux#203\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: bump some actions by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/205\"\u003eopencontainers/selinux#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eMisc nitpicks by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/206\"\u003eopencontainers/selinux#206\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003epwalk, pwalkdir: fix walk vs remove race by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/204\"\u003eopencontainers/selinux#204\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions CI Go matrix for Go v1.22 by \u003ca href=\"https://github.com/austinvazquez\"\u003e\u003ccode\u003e@​austinvazquez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/209\"\u003eopencontainers/selinux#209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate GitHub Actions packages to resolve deprecation warnings. by \u003ca href=\"https://github.com/austinvazquez\"\u003e\u003ccode\u003e@​austinvazquez\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/208\"\u003eopencontainers/selinux#208\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd dependabot config by \u003ca href=\"https://github.com/kolyshkin\"\u003e\u003ccode\u003e@​kolyshkin\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/210\"\u003eopencontainers/selinux#210\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump tim-actions/get-pr-commits from 1.3.0 to 1.3.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/211\"\u003eopencontainers/selinux#211\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 4 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/213\"\u003eopencontainers/selinux#213\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eShow SELinux label on failure by \u003ca href=\"https://github.com/rhatdan\"\u003e\u003ccode\u003e@​rhatdan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/216\"\u003eopencontainers/selinux#216\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ningmingxiao\"\u003e\u003ccode\u003e@​ningmingxiao\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/200\"\u003eopencontainers/selinux#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/michalbiesek\"\u003e\u003ccode\u003e@​michalbiesek\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/202\"\u003eopencontainers/selinux#202\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/opencontainers/selinux/pull/211\"\u003eopencontainers/selinux#211\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/4be9937fb76c0c49a30469135a4077fcc33712b8\"\u003e\u003ccode\u003e4be9937\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/237\"\u003e#237\u003c/a\u003e from cyphar/selinux-safe-procfs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/c8cfa6fd2d285a96022203163c2075eda85bff54\"\u003e\u003ccode\u003ec8cfa6f\u003c/code\u003e\u003c/a\u003e selinux: migrate to pathrs-lite procfs API\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/f2424d8145e2ac45a0ec457e39758cd58e573285\"\u003e\u003ccode\u003ef2424d8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/236\"\u003e#236\u003c/a\u003e from kolyshkin/modernize-ci\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/648ce7f0f85f4a310d1cd7317986fc1d6c8ff41c\"\u003e\u003ccode\u003e648ce7f\u003c/code\u003e\u003c/a\u003e ci: add go 1.25\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/916cab932c940e0fc55f0c8404d503665160dd9c\"\u003e\u003ccode\u003e916cab9\u003c/code\u003e\u003c/a\u003e ci: bump golangci-lint to v2.5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/b42e5c8eff8eab7ee590cc61d78fd3e2d38e3309\"\u003e\u003ccode\u003eb42e5c8\u003c/code\u003e\u003c/a\u003e all: format sources with latest gofumpt\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/74393ea060f4db5bae4002d42d28b0907c8b26b6\"\u003e\u003ccode\u003e74393ea\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/235\"\u003e#235\u003c/a\u003e from cyphar/fix-keyring-err-check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/6ec194b9a845fa4a14cd6bd1c0458ddc44d21407\"\u003e\u003ccode\u003e6ec194b\u003c/code\u003e\u003c/a\u003e keyring: fix typo in EACCES check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/879a755db558501df06f4ea59461ebc2d0c4a991\"\u003e\u003ccode\u003e879a755\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/selinux/issues/234\"\u003e#234\u003c/a\u003e from opencontainers/dependabot/github_actions/actions...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/selinux/commit/3c1bd9a95bfcc23ae12ed024d1bc9db9537b2d4f\"\u003e\u003ccode\u003e3c1bd9a\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/setup-go from 5 to 6\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/opencontainers/selinux/compare/v1.11.0...v1.13.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/fulcio` from 1.4.3 to 1.8.5\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/fulcio/releases\"\u003egithub.com/sigstore/fulcio's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.5\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003eThis resolves \u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\u003c/a\u003e - Server-side request forgery via MetaIssuer regex bypass\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eeaae2f2be56df9dea5f9b439ec81bedae4c0978d Add anchors when matching meta issuer regexp (GHSA-59jp-pj84-45mr) (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2263\"\u003e#2263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks for all contributors!\u003c/h3\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ef5bfa34740fc579523e2da9825ea575227331c6f build(deps): bump github.com/tink-crypto/tink-go/v2 from 2.5.0 to 2.6.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2246\"\u003e#2246\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e0039c980ab58e8cabf38d62fb80a607b5f21c0da build(deps): bump goa.design/goa/v3 from 3.22.6 to 3.23.4 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2245\"\u003e#2245\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e3a432f030f1dca4d088f1777f07947a85d1750cd build(deps): bump go.step.sm/crypto from 0.74.0 to 0.75.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2238\"\u003e#2238\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef3aba4a94150cad7eaa7dc0445e8cdf6cb037c23 build(deps): bump the all group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2247\"\u003e#2247\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee66a4c6f47d4052c7b38b84f081b26ca3191deb0 build(deps): bump the all group with 8 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2244\"\u003e#2244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea846db6473f4be95443f3772914a15cc156be7b6 build(deps): bump golang from \u003ccode\u003e20b91ed\u003c/code\u003e to \u003ccode\u003ea22b2e6\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2243\"\u003e#2243\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e5a012f5e4f9617fe649b08ec8531d1e8256577e4 update Run Invocation URI for circleci (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2242\"\u003e#2242\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e59dde0af71dbeaa69b8c25edb107ac19bf3a05ce update builder to use go1.25.5 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2235\"\u003e#2235\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e1a6870c7d6f0d2ed6513104ec3f60f8ba5d91c32 build(deps): bump golang from 1.25.4 to 1.25.5 in the all group (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2236\"\u003e#2236\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks for all contributors!\u003c/h3\u003e\n\u003ch2\u003ev1.8.3\u003c/h2\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003ev1.8.3 fixes \u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e3622f6e62cf74ff1477422a8c3aad4ca338ed047 update changelog for v1.8.3 release (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2234\"\u003e#2234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e765a0e57608b9ef390e1eeeea8595b9054c63a5a Merge commit from fork (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2233\"\u003e#2233\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e90f8520e1754b20ba0cb33d412ee15006711b85f build(deps): bump github.com/coreos/go-oidc/v3 from 3.16.0 to 3.17.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2225\"\u003e#2225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ed88584108bf71c5d375a41a62c05de3c587bd35e build(deps): bump the all group across 1 directory with 6 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2232\"\u003e#2232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea387888860bff3f4100d35aa5a63306bb545e702 build(deps): bump the all group with 4 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e7b0c1a11da32a1eb485ea3368725028c4f3d35be build(deps): bump actions/checkout from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2227\"\u003e#2227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ef0a0d051798bb1869d79ba21fbb9b60bdd896664 build(deps): bump golang from \u003ccode\u003ee68f6a0\u003c/code\u003e to \u003ccode\u003e6981837\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2222\"\u003e#2222\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e4ed0ea1b43f96c571de5ed8b44a5703d6c5c2894 Switch docker env from ct_server to TesseraCT (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2210\"\u003e#2210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee902cf880ff56e6749725ea6d63299ab7b370c2d feat: Add support for skipping email_verified claim requirement per issuer (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec0fc26c2c1d8a1e16802dd466fb233d69d3ef35d Add basic E2E tests (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2230\"\u003e#2230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ea4ee8608f0349bd546b33406417f8ff1a58b09b1 build(deps): bump sigstore/scaffolding/trillian_log_signer (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2228\"\u003e#2228\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e51d916e167276404d153607f076e5a7fb8f30986 build(deps): bump golang.org/x/crypto from 0.44.0 to 0.45.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2216\"\u003e#2216\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebd3a515d86c015a70fa7abd47511fcb1108aafcf add meta-issuer circleci block (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ec4d47896482f470adaf09dc7706a54fd66311bfd add circleci info to fulcio (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2192\"\u003e#2192\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eThanks for all contributors!\u003c/h3\u003e\n\u003ch1\u003ev1.8.2\u003c/h1\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/fulcio/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/fulcio's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev1.8.5\u003c/h1\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-59jp-pj84-45mr\u003c/a\u003e - Server-side request forgery via MetaIssuer regex bypass (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2263\"\u003e#2263\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.8.4\u003c/h1\u003e\n\u003cp\u003eSame changelog as v1.8.3, with a few dependency bumps to resolve a breaking API change\u003c/p\u003e\n\u003ch1\u003ev1.8.3\u003c/h1\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\"\u003ehttps://github.com/sigstore/fulcio/security/advisories/GHSA-f83f-xpx7-ffpw\u003c/a\u003e; prevents OOM condition due to malformed OIDC token (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2233\"\u003e#2233\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: Add support for skipping email_verified claim requirement per issuer (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd meta-issuer circleci block (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2215\"\u003e#2215\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd circleci info to fulcio (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2192\"\u003e#2192\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eTesting\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd basic E2E tests (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2230\"\u003e#2230\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.8.2\u003c/h1\u003e\n\u003ch2\u003eTesting\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003emake email address in test cases rfc822 conformant (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2205\"\u003e#2205\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.8.1\u003c/h1\u003e\n\u003cp\u003eSame as v1.8.0, but with a fix for the CI build pipeline.\u003c/p\u003e\n\u003ch1\u003ev1.8.0\u003c/h1\u003e\n\u003ch2\u003eBug Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: K8s API does not accept unauthorized requests (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2111\"\u003e#2111\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix: vault for enterprise expects only the key name (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2117\"\u003e#2117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003efix(config): respect cacert on oidc-issuers (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2098\"\u003e#2098\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eRegister \u003ccode\u003e/healthz\u003c/code\u003e endpoint when listening on duplex http/grpc port (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2046\"\u003e#2046\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat: adds cert loading and key-match validation. (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2173\"\u003e#2173\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexpose gcp kms retry and timeout options (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2132\"\u003e#2132\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eserver: Use warning log level for client errors (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2147\"\u003e#2147\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/eaae2f2be56df9dea5f9b439ec81bedae4c0978d\"\u003e\u003ccode\u003eeaae2f2\u003c/code\u003e\u003c/a\u003e Add anchors when matching meta issuer regexp (GHSA-59jp-pj84-45mr) (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2263\"\u003e#2263\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/9325775f9646bf8f9e1d592b70d437469665e5ee\"\u003e\u003ccode\u003e9325775\u003c/code\u003e\u003c/a\u003e Update changelog for v1.8.5 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2264\"\u003e#2264\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/b23705dfa2c780a35c4c2431ee1d410a21e59bc4\"\u003e\u003ccode\u003eb23705d\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/api from 0.258.0 to 0.259.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2260\"\u003e#2260\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/9e8841d1a25c3ac04431bc3f5cb6e464e305d423\"\u003e\u003ccode\u003e9e8841d\u003c/code\u003e\u003c/a\u003e build(deps): bump golang from \u003ccode\u003ea22b2e6\u003c/code\u003e to \u003ccode\u003e36b4f45\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2251\"\u003e#2251\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/5c135881b636773dbff529d2a7ef3a39a1fc40fd\"\u003e\u003ccode\u003e5c13588\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/upload-artifact from 5.0.0 to 6.0.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2253\"\u003e#2253\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/4c823ae9f2d21467d7a296a44ad68a7a3b3f47ca\"\u003e\u003ccode\u003e4c823ae\u003c/code\u003e\u003c/a\u003e build(deps): bump the all group across 1 directory with 4 updates (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2259\"\u003e#2259\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/c15246a31188dc787d23de75e690e51e596d30f8\"\u003e\u003ccode\u003ec15246a\u003c/code\u003e\u003c/a\u003e build(deps): bump google.golang.org/api from 0.257.0 to 0.258.0 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2252\"\u003e#2252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/f2e48e187c5e872375f641c2ed11b7d78324c73f\"\u003e\u003ccode\u003ef2e48e1\u003c/code\u003e\u003c/a\u003e Use transparency-dev tesseract image (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2250\"\u003e#2250\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/9e26cb46dc2022c3b561b7386442a26490f3f9bc\"\u003e\u003ccode\u003e9e26cb4\u003c/code\u003e\u003c/a\u003e Add read service for CT log (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2258\"\u003e#2258\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/fulcio/commit/7bff3d6a63891a9267719ea982b2f05349e6b8f3\"\u003e\u003ccode\u003e7bff3d6\u003c/code\u003e\u003c/a\u003e Switch to go.yaml.in/yaml/v3 (\u003ca href=\"https://redirect.github.com/sigstore/fulcio/issues/2257\"\u003e#2257\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/fulcio/compare/v1.4.3...v1.8.5\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/rekor` from 1.2.2 to 1.5.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/rekor/releases\"\u003egithub.com/sigstore/rekor's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev1.5.0\u003c/h1\u003e\n\u003cp\u003eThis release fixes GHSA-273p-m2cw-6833 and GHSA-4c4x-jm2x-pf9j. Note that this\ndrops support for fetching public keys via URL when querying the search API.\u003c/p\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed COSE and DSSE entries (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2729\"\u003e#2729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for fetching public keys by URL in the search index (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for a custom TLS config for clients (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2709\"\u003e#2709\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.4.3\u003c/h1\u003e\n\u003cp\u003eThis release reduces dependencies for a number of exported packages.\u003c/p\u003e\n\u003cp\u003eThis release also changes the format of the binary and container signature, which is now a\n\u003ca href=\"https://docs.sigstore.dev/about/bundle/\"\u003eSigstore bundle\u003c/a\u003e. To verify a release, use the\nlatest Cosign 3.x, verifying with\n\u003ccode\u003ecosign verify-blob --bundle \u0026lt;artifact\u0026gt;-keyless.sigstore.json \u0026lt;artifact\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eImprovements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003euse interruptable context to elegantly handle signals in rekor-cli (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2681\"\u003e#2681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestapi: Don't log client errors as errors (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2680\"\u003e#2680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: separate pki types from implementations (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2668\"\u003e#2668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee2e: don't mix e2e and regular utilities (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2672\"\u003e#2672\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: remove viper config from spec definitions (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2669\"\u003e#2669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elog: remove zap \u0026amp; go-chi dependecy from pkg/types (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2667\"\u003e#2667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update go-openapi/runtime to v0.29.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2670\"\u003e#2670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: remove double imported mapstructure pkg (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2671\"\u003e#2671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove archived dependency and use stdlib slices (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2650\"\u003e#2650\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(docs): guard unsafe int/uint conversions flagged by gosec (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2679\"\u003e#2679\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eContributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdamKorcz\u003c/li\u003e\n\u003cli\u003eBob Callaway\u003c/li\u003e\n\u003cli\u003eJussi Kukkonen\u003c/li\u003e\n\u003cli\u003eSachin Sampras M\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.4.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): Bump google-github-actions/auth from 2.1.12 to 3.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/sigstore/rekor/pull/2601\"\u003esigstore/rekor#2601\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/rekor/blob/main/CHANGELOG.md\"\u003egithub.com/sigstore/rekor's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev1.5.0\u003c/h1\u003e\n\u003cp\u003eThis release fixes GHSA-273p-m2cw-6833 and GHSA-4c4x-jm2x-pf9j. Note that this\ndrops support for fetching public keys via URL when querying the search API.\u003c/p\u003e\n\u003ch2\u003eVulnerability Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eHandle malformed COSE and DSSE entries (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2729\"\u003e#2729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDrop support for fetching public keys by URL in the search index (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support for a custom TLS config for clients (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2709\"\u003e#2709\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.4.3\u003c/h1\u003e\n\u003cp\u003eThis release reduces dependencies for a number of exported packages.\u003c/p\u003e\n\u003cp\u003eThis release also changes the format of the binary and container signature, which is now a\n\u003ca href=\"https://docs.sigstore.dev/about/bundle/\"\u003eSigstore bundle\u003c/a\u003e. To verify a release, use the\nlatest Cosign 3.x, verifying with\n\u003ccode\u003ecosign verify-blob --bundle \u0026lt;artifact\u0026gt;-keyless.sigstore.json \u0026lt;artifact\u0026gt;\u003c/code\u003e.\u003c/p\u003e\n\u003ch2\u003eImprovements\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003euse interruptable context to elegantly handle signals in rekor-cli (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2681\"\u003e#2681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003erestapi: Don't log client errors as errors (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2680\"\u003e#2680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: separate pki types from implementations (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2668\"\u003e#2668\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ee2e: don't mix e2e and regular utilities (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2672\"\u003e#2672\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epkg: remove viper config from spec definitions (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2669\"\u003e#2669\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003elog: remove zap \u0026amp; go-chi dependecy from pkg/types (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2667\"\u003e#2667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: update go-openapi/runtime to v0.29.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2670\"\u003e#2670\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003echore: remove double imported mapstructure pkg (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2671\"\u003e#2671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove archived dependency and use stdlib slices (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2650\"\u003e#2650\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eDocumentation\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e(docs): guard unsafe int/uint conversions flagged by gosec (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2679\"\u003e#2679\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eContributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdamKorcz\u003c/li\u003e\n\u003cli\u003eBob Callaway\u003c/li\u003e\n\u003cli\u003eJussi Kukkonen\u003c/li\u003e\n\u003cli\u003eSachin Sampras M\u003c/li\u003e\n\u003cli\u003eTõnis Tiigi\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ev1.4.2\u003c/h1\u003e\n\u003cp\u003eThis release includes some performance optimizations and a bug fix for publishing events to a pub/sub topic.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/fe9717fd6ee4cfecedc30e5fd64c9872bc2ac61c\"\u003e\u003ccode\u003efe9717f\u003c/code\u003e\u003c/a\u003e Changelog for v1.5.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2730\"\u003e#2730\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/60ef2bceba192c5bf9327d003bceea8bf1f8275f\"\u003e\u003ccode\u003e60ef2bc\u003c/code\u003e\u003c/a\u003e Drop support for fetching public keys by URL in the search index (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2731\"\u003e#2731\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/ca625dcde8fca15da88a93a9e48b1af84e29241f\"\u003e\u003ccode\u003eca625dc\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/redis/go-redis/v9 from 9.14.1 to 9.17.2 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2706\"\u003e#2706\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/39bae3d192bce48ef4ef2cbd1788fb5770fee8cd\"\u003e\u003ccode\u003e39bae3d\u003c/code\u003e\u003c/a\u003e Merge commit from fork (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2729\"\u003e#2729\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/812e699631adbb7a4fe383be9a1b8b93dd1ff14f\"\u003e\u003ccode\u003e812e699\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/api from 0.256.0 to 0.259.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2723\"\u003e#2723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/4596e4e30fa6159889074c01bedad8a690141346\"\u003e\u003ccode\u003e4596e4e\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/net from 0.47.0 to 0.48.0 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2722\"\u003e#2722\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/a3e73cdcf599e1125fedbbd80976bca98ed976b4\"\u003e\u003ccode\u003ea3e73cd\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/sigstore/sigstore from 1.9.5 to 1.10.3 (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2724\"\u003e#2724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/94d259c0b6ac951fd60a80e80f323a7108f2d612\"\u003e\u003ccode\u003e94d259c\u003c/code\u003e\u003c/a\u003e build(deps): Bump the all group across 1 directory with 3 updates (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2727\"\u003e#2727\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/a5329c9a605b0be09fbb4341f8661a35954f31bc\"\u003e\u003ccode\u003ea5329c9\u003c/code\u003e\u003c/a\u003e build(deps): Bump the all group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2728\"\u003e#2728\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/rekor/commit/5e6bdcdcfdbec3f70a8b22be21a830ac94eac143\"\u003e\u003ccode\u003e5e6bdcd\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.com/cloudsdktool/google-cloud-cli (\u003ca href=\"https://redirect.github.com/sigstore/rekor/issues/2726\"\u003e#2726\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/rekor/compare/v1.2.2...v1.5.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/sigstore/sigstore` from 1.8.2 to 1.10.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/sigstore/sigstore/releases\"\u003egithub.com/sigstore/sigstore's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.10.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003ev1.10.3 adds \u003ccode\u003eValidatePubKey\u003c/code\u003e back to the \u003ccode\u003ecryptoutils\u003c/code\u003e package to avoid a breaking API change.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eAdd back ValidatePubKey as a deprecated, minimal function in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2235\"\u003esigstore/sigstore#2235\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/sigstore/sigstore/compare/v1.10.2...v1.10.3\"\u003ehttps://github.com/sigstore/sigstore/compare/v1.10.2...v1.10.3\u003c/a\u003e\u003c/p\u003e\n\u003ch1\u003ev1.10.2\u003c/h1\u003e\n\u003cp\u003eFunctionally equivalent to \u003ca href=\"https://github.com/sigstore/sigstore/releases/tag/v1.10.0\"\u003ev1.10.0\u003c/a\u003e. v1.10.1 has been retracted to remove copied code.\u003c/p\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch3\u003eBreaking change\u003c/h3\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e moves \u003ccode\u003ecryptoutils.ValidatePubKey\u003c/code\u003e to \u003ccode\u003egoodkey.ValidatePubKey\u003c/code\u003e to minimize the dependency tree for clients using the cryptoutils package.\u003c/p\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003efeat(hashivault): token helper in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2174\"\u003esigstore/sigstore#2174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset GoogleAPIClientOption on GCP KMS provider in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2128\"\u003esigstore/sigstore#2128\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactoring\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ecryptoutils: move goodkey validation to separate package in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStop depending on golang.org/x/crypto for sha3 in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2209\"\u003esigstore/sigstore#2209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove duplicative dependency for portable browser opener in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2178\"\u003esigstore/sigstore#2178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econsolidate deep Equal usage to one library in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2177\"\u003esigstore/sigstore#2177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop redundant aws-sdk-go dependency in the e2e kms tests in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2172\"\u003esigstore/sigstore#2172\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.10.0\u003c/h2\u003e\n\u003ch2\u003eBreaking change\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e moves \u003ccode\u003ecryptoutils.ValidatePubKey\u003c/code\u003e to \u003ccode\u003egoodkey.ValidatePubKey\u003c/code\u003e to minimize the dependency tree for clients using the \u003ccode\u003ecryptoutils\u003c/code\u003e package.\u003c/p\u003e\n\u003ch2\u003eFeatures\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efeat(hashivault): token helper in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2174\"\u003esigstore/sigstore#2174\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eset GoogleAPIClientOption on GCP KMS provider in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2128\"\u003esigstore/sigstore#2128\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRefactoring\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ecryptoutils: move goodkey validation to separate package in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2194\"\u003esigstore/sigstore#2194\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eStop depending on golang.org/x/crypto for sha3 in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2209\"\u003esigstore/sigstore#2209\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove duplicative dependency for portable browser opener in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2178\"\u003esigstore/sigstore#2178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003econsolidate deep Equal usage to one library in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2177\"\u003esigstore/sigstore#2177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDrop redundant aws-sdk-go dependency in the e2e kms tests in \u003ca href=\"https://redirect.github.com/sigstore/sigstore/pull/2172\"\u003esigstore/sigstore#2172\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/72f0ed74d76419474f86933a4387851baf999739\"\u003e\u003ccode\u003e72f0ed7\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2230\"\u003e#2230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/b257168a1a41d46d432231173bfd66590d08819b\"\u003e\u003ccode\u003eb257168\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/aws/aws-sdk-go-v2 in /pkg/signature/kms/aws (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2226\"\u003e#2226\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/84f57b8bdb7fda0c4a6f914670470849cc86d21e\"\u003e\u003ccode\u003e84f57b8\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/sigstore/sigstore (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2221\"\u003e#2221\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/bdc1a865e428aba7cbd5f5a6ac15753f4eadf4b1\"\u003e\u003ccode\u003ebdc1a86\u003c/code\u003e\u003c/a\u003e build(deps): Bump actions/checkout from 5.0.1 to 6.0.0 (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2220\"\u003e#2220\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/11dfe81da1f12c52b3b4b1e4b4925e029a800ae8\"\u003e\u003ccode\u003e11dfe81\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto in /pkg/signature/kms/aws (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2236\"\u003e#2236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/021494802f9d12cd63d0848a6ad2989377e4db47\"\u003e\u003ccode\u003e0214948\u003c/code\u003e\u003c/a\u003e Add back ValidatePubKey as a deprecated, minimal function (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2235\"\u003e#2235\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/cc26bb8da52fd42201a981055e18b46e58628340\"\u003e\u003ccode\u003ecc26bb8\u003c/code\u003e\u003c/a\u003e build(deps): Bump localstack/localstack in /test/e2e in the all group (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2227\"\u003e#2227\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/63ab8d80edce6abcb9caee90c5dfde36a98b52c1\"\u003e\u003ccode\u003e63ab8d8\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/aws/aws-sdk-go-v2/service/kms (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2229\"\u003e#2229\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/9e629f05d3f03bad8e8ac31d339f506fe3197271\"\u003e\u003ccode\u003e9e629f0\u003c/code\u003e\u003c/a\u003e build(deps): Bump the all group with 2 updates (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2219\"\u003e#2219\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sigstore/sigstore/commit/234b99de441c3a727399c0b8c54e8c2c19075fa2\"\u003e\u003ccode\u003e234b99d\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/coreos/go-oidc/v3 from 3.16.0 to 3.17.0 (\u003ca href=\"https://redirect.github.com/sigstore/sigstore/issues/2223\"\u003e#2223\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/sigstore/sigstore/compare/v1.8.2...v1.10.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.31.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.31.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.25.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/35e1306bddd863f360fb94480c5fed84229953f0\"\u003e\u003ccode\u003e35e1306\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/7c360367ab7e57c0cfb7aef368fc6acefaaac3b1\"\u003e\u003ccode\u003e7c36036\u003c/code\u003e\u003c/a\u003e http2, webdav, websocket: fix %q verb uses with wrong type\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ec11eccf5a0f725281df0cdf40bb7ebef51d57ea\"\u003e\u003ccode\u003eec11ecc\u003c/code\u003e\u003c/a\u003e trace: fix data race in RenderEvents\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/bff14c52567061031b9761881907c39e24792736\"\u003e\u003ccode\u003ebff14c5\u003c/code\u003e\u003c/a\u003e http2: don't PING a responsive server when resetting a stream\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/88a642172c174ab11f4c56f0ede777de3c8a21d4\"\u003e\u003ccode\u003e88a6421\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: avoid use of \u0026quot;strings\u0026quot; and \u0026quot;math\u0026quot; in dns/dnsmessage\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/123d099e1bd872b38247bbcf9856540b8420d18d\"\u003e\u003ccode\u003e123d099\u003c/code\u003e\u003c/a\u003e http2: support net/http.Transport.NewClientConn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/346cc6157ee53301dea14e57a45c22368ab46e55\"\u003e\u003ccode\u003e346cc61\u003c/code\u003e\u003c/a\u003e webdav: relax test to check for any redirect status, not just 301\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.25.0...v0.48.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.61.1 to 1.78.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.78.0\u003c/h2\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eclient: Align URL validation with Go 1.26+ to now reject target URLs with unbracketed colons in the hostname. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8716\"\u003e#8716\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/neild\"\u003e\u003ccode\u003e@​neild\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport/client : Return status code \u003ccode\u003eUnknown\u003c/code\u003e on malformed grpc-status. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8735\"\u003e#8735\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003exds/resolver:\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eDrop previous route resources and report an error when no matching virtual host is found.\u003c/li\u003e\n\u003cli\u003eOnly log LDS/RDS configuration errors following a successful update and retain the last valid resource to prevent transient failures. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8711\"\u003e#8711\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats/otel: Add backend service label to weighted round robin metrics as part of A89. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8737\"\u003e#8737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003estats/otel: Add subchannel metrics (without the disconnection reason) to eventually replace the pickfirst metrics. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8738\"\u003e#8738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient: Wait for all pending goroutines to complete when closing a graceful switch balancer. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8746\"\u003e#8746\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/twz123\"\u003e\u003ccode\u003e@​twz123\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eclient: Add \u003ccode\u003eexperimental.AcceptCompressors\u003c/code\u003e so callers can restrict the \u003ccode\u003egrpc-accept-encoding\u003c/code\u003e header advertised for a call. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8718\"\u003e#8718\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/iblancasa\"\u003e\u003ccode\u003e@​iblancasa\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exds: Fix a bug in \u003ccode\u003eStringMatcher\u003c/code\u003e where regexes would match incorrectly when ignore_case is set to true. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8723\"\u003e#8723\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient:\n\u003cul\u003e\n\u003cli\u003eChange connectivity state to CONNECTING when creating the name resolver (as part of exiting IDLE).\u003c/li\u003e\n\u003cli\u003eChange connectivity state to TRANSIENT_FAILURE if name resolver creation fails (as part of exiting IDLE).\u003c/li\u003e\n\u003cli\u003eChange connectivity state to IDLE after idle timeout expires even when current state is TRANSIENT_FAILURE.\u003c/li\u003e\n\u003cli\u003eFix a bug that resulted in \u003ccode\u003eOnFinish\u003c/code\u003e call option not being invoked for RPCs where stream creation failed. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8710\"\u003e#8710\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exdsclient: Fix a race in the xdsClient that could lead to resource-not-found errors. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8627\"\u003e#8627\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Round up to nearest 4KiB for pool allocations larger than 1MiB. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8705\"\u003e#8705\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/cjc25\"\u003e\u003ccode\u003e@​cjc25\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.77.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Replace the \u003ccode\u003eReader\u003c/code\u003e interface with a struct for better performance and maintainability. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8669\"\u003e#8669\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/pickfirst: Remove support for the old \u003ccode\u003epick_first\u003c/code\u003e LB policy via the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST=false\u003c/code\u003e. The new \u003ccode\u003epick_first\u003c/code\u003e has been the default since \u003ccode\u003ev1.71.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8672\"\u003e#8672\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exdsclient: Fix a race condition in the ADS stream implementation that could result in \u003ccode\u003eresource-not-found\u003c/code\u003e errors, causing the gRPC client channel to move to \u003ccode\u003eTransientFailure\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8605\"\u003e#8605\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient: Ignore HTTP status header for gRPC streams. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8548\"\u003e#8548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eclient: Set a read deadline when closing a transport to prevent it from blocking indefinitely on a broken connection. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8534\"\u003e#8534\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/9df039ef2c921978514b600c9d5c6bf25cce54f6\"\u003e\u003ccode\u003e9df039e\u003c/code\u003e\u003c/a\u003e Change version to 1.78.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8761\"\u003e#8761\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/9b990b6355c443ecf9e71f118f7097b62bc3299a\"\u003e\u003ccode\u003e9b990b6\u003c/code\u003e\u003c/a\u003e gracefulswitch: Wait for all goroutines on close (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8746\"\u003e#8746\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/6677d9a9cf1dd8227673253015027de0addeeafb\"\u003e\u003ccode\u003e6677d9a\u003c/code\u003e\u003c/a\u003e xds: Fixing a typo (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8760\"\u003e#8760\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/d35cedde1ee806f3c578aba8c59bec7117ae0bc3\"\u003e\u003ccode\u003ed35cedd\u003c/code\u003e\u003c/a\u003e xds/resolver: pass route's auto_host_rewrite to LB picker (gRFC A81) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8740\"\u003e#8740\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/d931fdc379623f36d2050487887f5465a18b7912\"\u003e\u003ccode\u003ed931fdc\u003c/code\u003e\u003c/a\u003e client: allow overriding grpc-accept-encoding header (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8718\"\u003e#8718\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/0800ec75223cd0995d599002581eafe2151c6df3\"\u003e\u003ccode\u003e0800ec7\u003c/code\u003e\u003c/a\u003e xds/clusterimpl: update TestChildPolicyChangeOnConfigUpdate to use custom lb ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/6553ea1a1d99ff4e3a516499330bf47607e7708f\"\u003e\u003ccode\u003e6553ea1\u003c/code\u003e\u003c/a\u003e stats/otel: Add subchannel metrics (A94) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8738\"\u003e#8738\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/81a00cecc0abe8a7d7140967f96d9cc0729a3aa4\"\u003e\u003ccode\u003e81a00ce\u003c/code\u003e\u003c/a\u003e grpc: Fixing spelling typo (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8756\"\u003e#8756\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/e413838c3b7b8b3e94754cb3704751e49f917358\"\u003e\u003ccode\u003ee413838\u003c/code\u003e\u003c/a\u003e client: Change connectivity state to CONNECTING when creating the name resolv...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/f9d2bdb34edcd95f0ca9e2cfaba692722cb85ee2\"\u003e\u003ccode\u003ef9d2bdb\u003c/code\u003e\u003c/a\u003e stats/otel: Add grpc.lb.backend_service label to wrr metrics (A89) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8737\"\u003e#8737\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.61.1...v1.78.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/openstack-k8s-operators/ci-framework/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/openstack-k8s-operators/ci-framework/pull/3911","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/openstack-k8s-operators%2Fci-framework/issues/3911","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/3911/packages"}},{"old_version":"0.5.12","new_version":"0.5.15","update_type":"patch","path":null,"pr_created_at":"2026-04-20T06:41:47.000Z","version_change":"0.5.12 → 0.5.15","issue":{"uuid":"4293622165","node_id":"PR_kwDOMtLWjc7T17by","number":635,"state":"open","title":"chore(deps): bump the go_modules group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-20T06:41:47.000Z","updated_at":"2026-04-20T06:42:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":8,"packages":[{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/consensys/gnark-crypto","old_version":"0.12.1","new_version":"0.18.1","repository_url":"https://github.com/consensys/gnark-crypto"},{"name":"github.com/go-jose/go-jose/v4","old_version":"4.1.1","new_version":"4.1.4","repository_url":"https://github.com/go-jose/go-jose"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.9","new_version":"1.8.6","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.15"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.37.0","new_version":"1.42.0"},{"name":"golang.org/x/crypto","old_version":"0.41.0","new_version":"0.49.0"},{"name":"google.golang.org/grpc","old_version":"1.75.0","new_version":"1.79.3"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the /tests/interchain directory: [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519), [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto), [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) and [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter).\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/consensys/gnark-crypto` from 0.12.1 to 0.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/consensys/gnark-crypto/releases\"\u003egithub.com/consensys/gnark-crypto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.18.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\"\u003ehttps://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.18.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eperf: disable cobra bit reverse for small fields by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/662\"\u003eConsensys/gnark-crypto#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: adds avx512 poseidon2 for small fields by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/665\"\u003eConsensys/gnark-crypto#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGKR Gate Registry by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/652\"\u003eConsensys/gnark-crypto#652\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: remove unused benchmark script by \u003ca href=\"https://github.com/ivokub\"\u003e\u003ccode\u003e@​ivokub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/675\"\u003eConsensys/gnark-crypto#675\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove GKR from gnark-crypto by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/670\"\u003eConsensys/gnark-crypto#670\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: make \u0026lt;31 bit field generated using uint32 by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/676\"\u003eConsensys/gnark-crypto#676\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: hash to curve by \u003ca href=\"https://github.com/ivokub\"\u003e\u003ccode\u003e@​ivokub\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/674\"\u003eConsensys/gnark-crypto#674\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: Eisenstein Half-GCD convergence by \u003ca href=\"https://github.com/feltroidprime\"\u003e\u003ccode\u003e@​feltroidprime\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/680\"\u003eConsensys/gnark-crypto#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat/hashregistry by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/687\"\u003eConsensys/gnark-crypto#687\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat/fftext by \u003ca href=\"https://github.com/YaoJGalteland\"\u003e\u003ccode\u003e@​YaoJGalteland\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/684\"\u003eConsensys/gnark-crypto#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeat/vortex options by \u003ca href=\"https://github.com/ThomasPiellard\"\u003e\u003ccode\u003e@​ThomasPiellard\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/689\"\u003eConsensys/gnark-crypto#689\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[secp256k1]: replace outdated link to article by \u003ca href=\"https://github.com/gap-editor\"\u003e\u003ccode\u003e@​gap-editor\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/690\"\u003eConsensys/gnark-crypto#690\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: remove dependency on internal package in ecc.go by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/693\"\u003eConsensys/gnark-crypto#693\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/feltroidprime\"\u003e\u003ccode\u003e@​feltroidprime\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/680\"\u003eConsensys/gnark-crypto#680\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/YaoJGalteland\"\u003e\u003ccode\u003e@​YaoJGalteland\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/684\"\u003eConsensys/gnark-crypto#684\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/gap-editor\"\u003e\u003ccode\u003e@​gap-editor\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/690\"\u003eConsensys/gnark-crypto#690\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Consensys/gnark-crypto/compare/v0.17.0...v0.18.0\"\u003ehttps://github.com/Consensys/gnark-crypto/compare/v0.17.0...v0.18.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: missing Poseidon2 round keys by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/621\"\u003eConsensys/gnark-crypto#621\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: Poseidon2 Hash Instantiation for BLS12-377 by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/623\"\u003eConsensys/gnark-crypto#623\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add Grumpkin elliptic curve (2-cycle with BN254) by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/625\"\u003eConsensys/gnark-crypto#625\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePerf: Poseidon2 GKR circuit by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/628\"\u003eConsensys/gnark-crypto#628\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add sis avx512 and fft avx512 for koalabear by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/622\"\u003eConsensys/gnark-crypto#622\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eInterpolateOnRange refactor by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/634\"\u003eConsensys/gnark-crypto#634\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add auto close PR workflow by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/638\"\u003eConsensys/gnark-crypto#638\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eperf: subgroup membership by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/635\"\u003eConsensys/gnark-crypto#635\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: poseidon2 for koala-bear, baby-bear and goldilocks by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/629\"\u003eConsensys/gnark-crypto#629\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: generify poseidon2 parameters for other curves/fr by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/636\"\u003eConsensys/gnark-crypto#636\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: baby-bear and koala-bear extensions of degree 4 by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/643\"\u003eConsensys/gnark-crypto#643\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: ensure fast path is taken only with fixed bound and degree by \u003ca href=\"https://github.com/gbotrel\"\u003e\u003ccode\u003e@​gbotrel\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/651\"\u003eConsensys/gnark-crypto#651\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePoseidon2 compression for small fields by \u003ca href=\"https://github.com/Tabaie\"\u003e\u003ccode\u003e@​Tabaie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/644\"\u003eConsensys/gnark-crypto#644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: poseidon2 templates by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/648\"\u003eConsensys/gnark-crypto#648\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: improve NAF decomposition test coverage by \u003ca href=\"https://github.com/DeVikingMark\"\u003e\u003ccode\u003e@​DeVikingMark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/617\"\u003eConsensys/gnark-crypto#617\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: generate code for poseidon2_test by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/660\"\u003eConsensys/gnark-crypto#660\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest(bn254, bls12-381): test points intentionally not on sugroups G1/2 by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/658\"\u003eConsensys/gnark-crypto#658\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003erefactor: generify small fields extensions by \u003ca href=\"https://github.com/yelhousni\"\u003e\u003ccode\u003e@​yelhousni\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/647\"\u003eConsensys/gnark-crypto#647\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DeVikingMark\"\u003e\u003ccode\u003e@​DeVikingMark\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/pull/617\"\u003eConsensys/gnark-crypto#617\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md\"\u003egithub.com/consensys/gnark-crypto's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[v0.18.1] - 2025-10-28\u003c/h2\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd CHANGELOG for 0.18.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003elimit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\n\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[v0.18.0] - 2025-06-09\u003c/h2\u003e\n\u003ch3\u003eBuild\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003cstrong\u003edeps:\u003c/strong\u003e bump golang.org/x/crypto from 0.33.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove unused benchmark script (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ereplace outdated link to article (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/690\"\u003e#690\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eExperiment\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003evortex on koalabear (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/645\"\u003e#645\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeat\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove dependency on internal package in ecc.go (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/693\"\u003e#693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emake \u0026lt;31 bit field generated using uint32 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/676\"\u003e#676\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove unimplemented path from fft ext\u003c/li\u003e\n\u003cli\u003eEisenstein Half-GCD convergence (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadds avx512 poseidon2 for small fields (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/665\"\u003e#665\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eremove useless copies in e4 mul by elem (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/667\"\u003e#667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edisable cobra bit reverse for small fields (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/662\"\u003e#662\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ehash to curve (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/674\"\u003e#674\u003c/a\u003e)\n\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[v0.17.0] - 2025-03-11\u003c/h2\u003e\n\u003ch3\u003eChore\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eremove useless github workflow\u003c/li\u003e\n\u003cli\u003egenerify poseidon2 parameters for other curves/fr (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/636\"\u003e#636\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd auto close PR workflow (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/638\"\u003e#638\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFeat\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebaby-bear and koala-bear extensions of degree 4 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/643\"\u003e#643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eposeidon2 for koala-bear, baby-bear and goldilocks (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/629\"\u003e#629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd sis avx512 and fft avx512 for koalabear (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/622\"\u003e#622\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eadd Grumpkin elliptic curve (2-cycle with BN254) (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/625\"\u003e#625\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePoseidon2 Hash Instantiation for BLS12-377 (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/623\"\u003e#623\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFix\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eposeidon2 templates (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/648\"\u003e#648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eensure fast path is taken only with fixed bound and degree (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/651\"\u003e#651\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emissing Poseidon2 round keys (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/621\"\u003e#621\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esubgroup membership (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/635\"\u003e#635\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePoseidon2 GKR circuit (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/628\"\u003e#628\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRefactor\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003egenerify small fields extensions (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/647\"\u003e#647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003egenerate code for poseidon2_test (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/660\"\u003e#660\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eStyle\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/fb04e95c3b2fca34f2cc773d3e8c1f930ede271a\"\u003e\u003ccode\u003efb04e95\u003c/code\u003e\u003c/a\u003e docs: add CHANGELOG for 0.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/0a4d04ae621bc19b6b40c6c7b8fa91f08b434533\"\u003e\u003ccode\u003e0a4d04a\u003c/code\u003e\u003c/a\u003e perf: limit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/f8ab23ad72836de95a017e7df1930992f291a509\"\u003e\u003ccode\u003ef8ab23a\u003c/code\u003e\u003c/a\u003e fix: remove unimplemented path from fft ext\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/2b70394b1962337a39546e67c6db125628d46118\"\u003e\u003ccode\u003e2b70394\u003c/code\u003e\u003c/a\u003e feat: remove dependency on internal package in ecc.go (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/693\"\u003e#693\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/ca72a0f722db3704e764f67e1bb893459501cd5f\"\u003e\u003ccode\u003eca72a0f\u003c/code\u003e\u003c/a\u003e docs: replace outdated link to article (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/690\"\u003e#690\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/21614bdb6b30608c8556598677f797e24ac70635\"\u003e\u003ccode\u003e21614bd\u003c/code\u003e\u003c/a\u003e Feat/vortex options (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/689\"\u003e#689\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/0517915476d283b92224365bd8659bca10153ffd\"\u003e\u003ccode\u003e0517915\u003c/code\u003e\u003c/a\u003e Feat/fftext (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/684\"\u003e#684\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/404f8e5110fa7eaa178d2617ff55eded12cd4de2\"\u003e\u003ccode\u003e404f8e5\u003c/code\u003e\u003c/a\u003e feat/hashregistry (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/687\"\u003e#687\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/56600883e0e9f9b159e9c7000b94e76185ec3d0d\"\u003e\u003ccode\u003e5660088\u003c/code\u003e\u003c/a\u003e fix: Eisenstein Half-GCD convergence (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/1873045cbd7d0e690a74c0c30c4a00335776de5f\"\u003e\u003ccode\u003e1873045\u003c/code\u003e\u003c/a\u003e build(deps): bump golang.org/x/crypto from 0.33.0 to 0.35.0 (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/consensys/gnark-crypto/compare/v0.12.1...v0.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-jose/go-jose/v4` from 4.1.1 to 4.1.4\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-jose/go-jose/releases\"\u003egithub.com/go-jose/go-jose/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.1.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003eFixes Panic in JWE decryption. See \u003ca href=\"https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\"\u003ehttps://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.3...v4.1.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.3\u003c/h2\u003e\n\u003cp\u003eThis release drops Go 1.23 support as that Go release is no longer supported. With that, we can drop \u003ccode\u003ex/crypto\u003c/code\u003e and no longer have any external dependencies in go-jose outside of the standard library!\u003c/p\u003e\n\u003cp\u003eThis release fixes a bug where a critical b64 header was ignored if in an unprotected header. It is now rejected instead of ignored.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eRemove Go 1.23 support by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/205\"\u003ego-jose/go-jose#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReject JWS with an unprotected critical b64 header by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/210\"\u003ego-jose/go-jose#210\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.2...v4.1.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev4.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cp\u003ego-jose v4.1.2 improves some documentation, errors, and removes the only 3rd-party dependency.\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate go-jose documentation by \u003ca href=\"https://github.com/mcpherrinm\"\u003e\u003ccode\u003e@​mcpherrinm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/198\"\u003ego-jose/go-jose#198\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRemove dependency on testify by \u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImprove error message for invalid private keys by \u003ca href=\"https://github.com/ProjectMutilation\"\u003e\u003ccode\u003e@​ProjectMutilation\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/195\"\u003ego-jose/go-jose#195\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eJWK unsupported error when unmarshalling by \u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd JSONWebKey type to makeJWERecipient by \u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etestutils/assert: remove True, Nil, NotNil by \u003ca href=\"https://github.com/jsha\"\u003e\u003ccode\u003e@​jsha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/202\"\u003ego-jose/go-jose#202\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/wardviaene\"\u003e\u003ccode\u003e@​wardviaene\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/197\"\u003ego-jose/go-jose#197\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/fprojetto\"\u003e\u003ccode\u003e@​fprojetto\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/191\"\u003ego-jose/go-jose#191\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/alvarolivie\"\u003e\u003ccode\u003e@​alvarolivie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-jose/go-jose/pull/200\"\u003ego-jose/go-jose#200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\"\u003ehttps://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/0e59876635f3dbf46d7b5e97b52bb75a3f96e7d9\"\u003e\u003ccode\u003e0e59876\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/ddffdbcec8bdadea8e02a20bdf19239878228215\"\u003e\u003ccode\u003eddffdbc\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/213\"\u003e#213\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/5348b9a4ba4559d2266b5af89fb5353cd1a5360a\"\u003e\u003ccode\u003e5348b9a\u003c/code\u003e\u003c/a\u003e Reject JWS with an unprotected critical b64 header (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/210\"\u003e#210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9153a5e4549c95e97a84e41e6375dc90eac54241\"\u003e\u003ccode\u003e9153a5e\u003c/code\u003e\u003c/a\u003e Bump actions/setup-python from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/208\"\u003e#208\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/2126e17f8791f6a234e63b2e4e8cb9fac8605c3a\"\u003e\u003ccode\u003e2126e17\u003c/code\u003e\u003c/a\u003e Bump actions/setup-go from 5 to 6 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/209\"\u003e#209\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/9860c65054c4821d1e7c22200422b04181f58ebc\"\u003e\u003ccode\u003e9860c65\u003c/code\u003e\u003c/a\u003e Bump actions/checkout from 4 to 5 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/206\"\u003e#206\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/14239fdb15b88e1c42e41621ef24f1112cf31b5a\"\u003e\u003ccode\u003e14239fd\u003c/code\u003e\u003c/a\u003e Remove Go 1.23 support (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/205\"\u003e#205\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a16e15813482ca5e9a679b7f5bb42ddfae616d43\"\u003e\u003ccode\u003ea16e158\u003c/code\u003e\u003c/a\u003e Update CI to run on Go 1.24 and 1.25 (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/204\"\u003e#204\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/a1565a41aa008ae6545e0f50a636d254de5b4596\"\u003e\u003ccode\u003ea1565a4\u003c/code\u003e\u003c/a\u003e testutils/assert: remove True, Nil, NotNil (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/202\"\u003e#202\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-jose/go-jose/commit/3a80e136a96e747bf44049414eadc02828df4d33\"\u003e\u003ccode\u003e3a80e13\u003c/code\u003e\u003c/a\u003e jwe: accept non-pointer JSONWebKey in Recipient (\u003ca href=\"https://redirect.github.com/go-jose/go-jose/issues/200\"\u003e#200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-jose/go-jose/compare/v4.1.1...v4.1.4\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.9 to 1.8.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.8.6\u003c/h2\u003e\n\u003cp\u003eNo release notes provided.\u003c/p\u003e\n\u003ch2\u003ev1.8.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[chore] : Bump the go group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/576\"\u003ehashicorp/go-getter#576\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003euse %w to wrap error by \u003ca href=\"https://github.com/Ericwww\"\u003e\u003ccode\u003e@​Ericwww\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/475\"\u003ehashicorp/go-getter#475\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/538\"\u003e#538\u003c/a\u003e http file download skipped if headResp.ContentLength is 0 by \u003ca href=\"https://github.com/martijnvdp\"\u003e\u003ccode\u003e@​martijnvdp\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/539\"\u003ehashicorp/go-getter#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix error message capitalization in checksum function by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/578\"\u003ehashicorp/go-getter#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 8 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/577\"\u003ehashicorp/go-getter#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix git url with ambiguous ref by \u003ca href=\"https://github.com/nimasamii\"\u003e\u003ccode\u003e@​nimasamii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/382\"\u003ehashicorp/go-getter#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: resolve compilation errors in get_git_test.go by \u003ca href=\"https://github.com/CreatorHead\"\u003e\u003ccode\u003e@​CreatorHead\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/579\"\u003ehashicorp/go-getter#579\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/582\"\u003ehashicorp/go-getter#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/583\"\u003ehashicorp/go-getter#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest that arbitrary files cannot be checksummed by \u003ca href=\"https://github.com/schmichael\"\u003e\u003ccode\u003e@​schmichael\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/250\"\u003ehashicorp/go-getter#250\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump google.golang.org/api from 0.260.0 to 0.262.0 in the go group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/585\"\u003ehashicorp/go-getter#585\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump actions/checkout from 6.0.1 to 6.0.2 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/586\"\u003ehashicorp/go-getter#586\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/588\"\u003ehashicorp/go-getter#588\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump actions/cache from 5.0.2 to 5.0.3 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/589\"\u003ehashicorp/go-getter#589\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump aws-actions/configure-aws-credentials from 5.1.1 to 6.0.0 in the actions group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/592\"\u003ehashicorp/go-getter#592\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump google.golang.org/api from 0.264.0 to 0.265.0 in the go group by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/591\"\u003ehashicorp/go-getter#591\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 5 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/593\"\u003ehashicorp/go-getter#593\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-6310 - CRT Onboarding by \u003ca href=\"https://github.com/nasareeny\"\u003e\u003ccode\u003e@​nasareeny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/584\"\u003ehashicorp/go-getter#584\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix crt build path by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/594\"\u003ehashicorp/go-getter#594\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the go group with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/596\"\u003ehashicorp/go-getter#596\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove checkout action from set-product-version job by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/598\"\u003ehashicorp/go-getter#598\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group with 4 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/595\"\u003ehashicorp/go-getter#595\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(deps): upgrade go.opentelemetry.io/otel/sdk to v1.40.0 (GO-2026-4394) by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/599\"\u003ehashicorp/go-getter#599\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePrepare go-getter for v1.8.5 release by \u003ca href=\"https://github.com/nasareeny\"\u003e\u003ccode\u003e@​nasareeny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/597\"\u003ehashicorp/go-getter#597\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group with 2 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/600\"\u003ehashicorp/go-getter#600\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esec: bump go and xrepos + redact aws tokens in url by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/604\"\u003ehashicorp/go-getter#604\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eNOTES:\u003c/strong\u003e\u003c/p\u003e\n\u003cp\u003eBinary Distribution Update: To streamline our release process and align with other HashiCorp tools, all release binaries will now be published exclusively to the official HashiCorp \u003ca href=\"https://releases.hashicorp.com/go-getter/\"\u003erelease\u003c/a\u003e site. We will no longer attach release assets to GitHub Releases.\u003c/p\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Ericwww\"\u003e\u003ccode\u003e@​Ericwww\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/475\"\u003ehashicorp/go-getter#475\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/martijnvdp\"\u003e\u003ccode\u003e@​martijnvdp\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/539\"\u003ehashicorp/go-getter#539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nimasamii\"\u003e\u003ccode\u003e@​nimasamii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/382\"\u003ehashicorp/go-getter#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/nasareeny\"\u003e\u003ccode\u003e@​nasareeny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/584\"\u003ehashicorp/go-getter#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.8.4...v1.8.5\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.8.4...v1.8.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.8.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e[IND-4227][COMPLIANCE] chore: Fix lint issues-build tags by \u003ca href=\"https://github.com/ssagarverma\"\u003e\u003ccode\u003e@​ssagarverma\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/568\"\u003ehashicorp/go-getter#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[IND-4227] [COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/566\"\u003ehashicorp/go-getter#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Update Copyright Headers by \u003ca href=\"https://github.com/oss-core-libraries-dashboard\"\u003e\u003ccode\u003e@​oss-core-libraries-dashboard\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/571\"\u003ehashicorp/go-getter#571\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[chore] : Bump the actions group across 1 directory with 3 updates by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/567\"\u003ehashicorp/go-getter#567\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d23bff48fb87c956bb507a03d35a63ee45470e34\"\u003e\u003ccode\u003ed23bff4\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/608\"\u003e#608\u003c/a\u003e from hashicorp/dependabot/go_modules/go-security-9c51...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/2c4aba8e5286c18bc66358236454a3e3b0aa7421\"\u003e\u003ccode\u003e2c4aba8\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/613\"\u003e#613\u003c/a\u003e from hashicorp/pull/v1.8.6\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/fe61ed9454b818721d81328d7e880fc2ed2c8d15\"\u003e\u003ccode\u003efe61ed9\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/611\"\u003e#611\u003c/a\u003e from hashicorp/SECVULN-41053\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/d53365612c5250f7df8d586ba3be70fbd42e613b\"\u003e\u003ccode\u003ed533656\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/606\"\u003e#606\u003c/a\u003e from hashicorp/pull/CRT\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/388f23d7d40f1f1e1a9f5b40ee5590c08154cd6d\"\u003e\u003ccode\u003e388f23d\u003c/code\u003e\u003c/a\u003e Additional test for local branch and head\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/b7ceaa59b11a203c14cf58e5fcaa8f169c0ced6e\"\u003e\u003ccode\u003eb7ceaa5\u003c/code\u003e\u003c/a\u003e harden checkout ref handling and added regression tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/769cc14fdb0df5ac548f4ead1193b5c40460f11e\"\u003e\u003ccode\u003e769cc14\u003c/code\u003e\u003c/a\u003e Release version bump up\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/6086a6a1f6347f735401c26429d9a0e14ad29444\"\u003e\u003ccode\u003e6086a6a\u003c/code\u003e\u003c/a\u003e Review Comments Addressed\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e02063cd28e97bb8a23a63e72e2a4a4ab6e982cf\"\u003e\u003ccode\u003ee02063c\u003c/code\u003e\u003c/a\u003e Revert \u0026quot;SECVULN Fix for git checkout argument injection enables arbitrary fil...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c93084dc4306b2c49c54fe6fbfbe79c98956e5f8\"\u003e\u003ccode\u003ec93084d\u003c/code\u003e\u003c/a\u003e [chore] : Bump google.golang.org/grpc\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.9...v1.8.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.15\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7eee8a8a405163554a9accec7b9402ee21400769\"\u003e\u003ccode\u003e7eee8a8\u003c/code\u003e\u003c/a\u003e v9.5.15: release notes and formatting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/235be8df4f86c943c154112d1abb3c951c86babb\"\u003e\u003ccode\u003e235be8d\u003c/code\u003e\u003c/a\u003e lzma: Fix default for ReaderConfig.DictCap\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.15\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.37.0 to 1.42.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eErr\u003c/code\u003e and \u003ccode\u003eSetErr\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e to attach an error and set record exception attributes in \u003ccode\u003ego.opentelemetry.io/otel/log/sdk\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7924\"\u003e#7924\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eTracerProvider.ForceFlush\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e joins errors together and continues iteration through SpanProcessors as opposed to returning the first encountered error without attempting exports on subsequent SpanProcessors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7856\"\u003e#7856\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7931\"\u003e#7931\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix semconv v1.39.0 generated metric helpers skipping required attributes when extra attributes were empty. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7964\"\u003e#7964\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ePreserve W3C TraceFlags bitmask (including the random Trace ID flag) during trace context extraction and injection in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7834\"\u003e#7834\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eRemoved\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDrop support for [Go 1.24]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7984\"\u003e#7984\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.41.0/0.63.0/0.17.0/0.0.15] 2026-03-02\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.24].\nThe next release will require at least [Go 1.25].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eSupport testing of [Go 1.26]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7902\"\u003e#7902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003eBaggage\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/propagation\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e and \u003ccode\u003eNew\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/baggage\u003c/code\u003e to comply with W3C Baggage specification limits.\n\u003ccode\u003eNew\u003c/code\u003e and \u003ccode\u003eParse\u003c/code\u003e now return partial baggage along with an error when limits are exceeded.\nErrors from baggage extraction are reported to the global error handler. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7880\"\u003e#7880\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eReturn an error when the endpoint is configured as insecure and with TLS configuration in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7914\"\u003e#7914\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/a3941ff595235e952774f0a581c7655bec93b0ab\"\u003e\u003ccode\u003ea3941ff\u003c/code\u003e\u003c/a\u003e Release v1.42.0/v0.64.0/v0.18.0/v0.0.16 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8006\"\u003e#8006\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/6059c47bc64a1329618d8c06d31098cd1eee7750\"\u003e\u003ccode\u003e6059c47\u003c/code\u003e\u003c/a\u003e chore(deps): update golang.org/x/telemetry digest to e526e8a (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8010\"\u003e#8010\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/44c7edf896e0672b8b522700dcb9d56011349897\"\u003e\u003ccode\u003e44c7edf\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mgechev/revive to v1.15.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8009\"\u003e#8009\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/de5fb3ad101bc8de082bcaae93d4129ce467ad8c\"\u003e\u003ccode\u003ede5fb3a\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.79.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8007\"\u003e#8007\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/0b82ded815a410d3bc0fc8b30802fd3a41059db3\"\u003e\u003ccode\u003e0b82ded\u003c/code\u003e\u003c/a\u003e chore(deps): update codspeedhq/action action to v4.11.1 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8001\"\u003e#8001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/aa3660f77e65ad0873ae7f06084bfc9ddc62948b\"\u003e\u003ccode\u003eaa3660f\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.6 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8004\"\u003e#8004\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9be8c92a131a085c8b33b32bf19b3e16c413e2ae\"\u003e\u003ccode\u003e9be8c92\u003c/code\u003e\u003c/a\u003e chore(deps): update dependency codespell to v2.4.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8003\"\u003e#8003\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c9d20155fcfa8d7dad13d1358fcdf63989113693\"\u003e\u003ccode\u003ec9d2015\u003c/code\u003e\u003c/a\u003e log: add error field to Record and make SDK to emit exception attributes (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7924\"\u003e#7924\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/fdd1320c39ebc4b8e976f58e0af55965f25411c7\"\u003e\u003ccode\u003efdd1320\u003c/code\u003e\u003c/a\u003e TracerProvider ForceFlush() Error Fix (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7856\"\u003e#7856\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/78f99042e2b038c4c86c5fa1ffd0609ec498c1db\"\u003e\u003ccode\u003e78f9904\u003c/code\u003e\u003c/a\u003e chore(deps): update golang.org/x/telemetry digest to 18da590 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8000\"\u003e#8000\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.37.0...v1.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.41.0 to 0.49.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/982eaa62dfb7273603b97fc1835561450096f3bd\"\u003e\u003ccode\u003e982eaa6\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/159944f128e9b3fdeb5a5b9b102a961904601a87\"\u003e\u003ccode\u003e159944f\u003c/code\u003e\u003c/a\u003e ssh,acme: clean up tautological/impossible nil conditions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a408498e55412f2ae2a058336f78889fb1ba6115\"\u003e\u003ccode\u003ea408498\u003c/code\u003e\u003c/a\u003e acme: only require prompt if server has terms of service\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/cab0f718548e8a858701b7b48161f44748532f58\"\u003e\u003ccode\u003ecab0f71\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.25.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2f26647a795e74e712b3aebc2655bca60b2686f9\"\u003e\u003ccode\u003e2f26647\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e08b06753d6a72f1fe375b6e0fefefb39917c165\"\u003e\u003ccode\u003ee08b067\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7d0074ccc6f17acbf2ebb10db06d492e08f887dc\"\u003e\u003ccode\u003e7d0074c\u003c/code\u003e\u003c/a\u003e scrypt: fix panic on parameters \u0026lt;= 0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/506e022208b864bc3c9c4a416fe56be75d10ad24\"\u003e\u003ccode\u003e506e022\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7dacc380ba001e8fe7c3c7a46bf3cbdaa5064df9\"\u003e\u003ccode\u003e7dacc38\u003c/code\u003e\u003c/a\u003e chacha20poly1305: error out in fips140=only mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.41.0...v0.49.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.75.0 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.75.0...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/MANTRA-Chain/mantrachain/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/MANTRA-Chain/mantrachain/pull/635","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/MANTRA-Chain%2Fmantrachain/issues/635","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/635/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":"/gtfsAggregation in the go_modules group across 1 directory","pr_created_at":"2026-04-16T20:42:27.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4278421595","node_id":"PR_kwDORlDdpM7TGhO7","number":106,"state":"closed","title":"chore(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14 in /gtfsAggregation in the go_modules group across 1 directory","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-16T23:28:19.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-16T20:42:27.000Z","updated_at":"2026-04-16T23:28:21.000Z","time_to_close":9952,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps)","packages":[{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":"/gtfsAggregation in the go_modules group across 1 directory","ecosystem":"go"},"body":"Bumps the go_modules group with 1 update in the /gtfsAggregation directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/ulikunitz/xz\u0026package-manager=go_modules\u0026previous-version=0.5.12\u0026new-version=0.5.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/mattiaskvist/forseningskartan/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/mattiaskvist/forseningskartan/pull/106","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/mattiaskvist%2Fforseningskartan/issues/106","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/106/packages"}},{"old_version":"0.5.9","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-04-14T22:40:02.000Z","version_change":"0.5.9 → 0.5.14","issue":{"uuid":"4265120353","node_id":"PR_kwDONpEgrc7SdXFs","number":1,"state":"open","title":"Bump the go_modules group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-14T22:40:02.000Z","updated_at":"2026-04-14T22:44:11.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":7,"packages":[{"name":"github.com/eclipse/paho.mqtt.golang","old_version":"1.4.3","new_version":"1.5.1","repository_url":"https://github.com/eclipse/paho.mqtt.golang"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.9","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"golang.org/x/image","old_version":"0.11.0","new_version":"0.38.0","repository_url":"https://github.com/golang/image"},{"name":"golang.org/x/oauth2","old_version":"0.11.0","new_version":"0.27.0","repository_url":"https://github.com/golang/oauth2"},{"name":"google.golang.org/protobuf","old_version":"1.31.0","new_version":"1.33.0"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/eclipse/paho.mqtt.golang](https://github.com/eclipse/paho.mqtt.golang) | `1.4.3` | `1.5.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.9` | `0.5.14` |\n| [golang.org/x/image](https://github.com/golang/image) | `0.11.0` | `0.38.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.11.0` | `0.27.0` |\n| google.golang.org/protobuf | `1.31.0` | `1.33.0` |\n\n\nUpdates `github.com/eclipse/paho.mqtt.golang` from 1.4.3 to 1.5.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/eclipse/paho.mqtt.golang/releases\"\u003egithub.com/eclipse/paho.mqtt.golang's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.5.1\u003c/h2\u003e\n\u003cp\u003eThis is a minor release incorporating changes made in the 14 months since v1.5.0 (including updating dependencies, and raising the Go version to 1.24). The changes are relatively minor but address a potential security issue (\u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-10543\"\u003eCVE-2025-10543\u003c/a\u003e), possible panic, enable users to better monitor the connection status, and incorporate a few optimisations.\u003c/p\u003e\n\u003cp\u003eThanks to those who have provided fixes/enhancements included in this release!\u003c/p\u003e\n\u003cp\u003eSpecial thanks to Paul Gerste at \u003ca href=\"https://www.sonarsource.com/\"\u003eSonar\u003c/a\u003e for reporting issue \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/730\"\u003e#730\u003c/a\u003e via the Eclipse security team (fix was implemented in PR \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/714\"\u003e#714\u003c/a\u003e in May, github issue created just prior to this release). This issue arose where a topic \u0026gt; 65535 bytes was passed to the \u003ccode\u003ePublish\u003c/code\u003e function, due to the way the data was encoded the topic could leak into the message body. Please see issue \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/730\"\u003e#730\u003c/a\u003e or \u003ca href=\"https://www.cve.org/CVERecord?id=CVE-2025-10543\"\u003eCVE-2025-10543\u003c/a\u003e for further details.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdating go dependencies from pub and sub into the containers before building by \u003ca href=\"https://github.com/JefJrFigueiredo\"\u003e\u003ccode\u003e@​JefJrFigueiredo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/691\"\u003eeclipse-paho/paho.mqtt.golang#691\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOptimize TCP connection logic by \u003ca href=\"https://github.com/geekeryy\"\u003e\u003ccode\u003e@​geekeryy\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/713\"\u003eeclipse-paho/paho.mqtt.golang#713\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFields over 65535 bytes not encoded correctly by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/714\"\u003eeclipse-paho/paho.mqtt.golang#714\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReduce slice allocations in route dispatch  by \u003ca href=\"https://github.com/alespour\"\u003e\u003ccode\u003e@​alespour\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/710\"\u003eeclipse-paho/paho.mqtt.golang#710\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a ConnectionNotificationHandler by \u003ca href=\"https://github.com/RangelReale\"\u003e\u003ccode\u003e@​RangelReale\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/727\"\u003eeclipse-paho/paho.mqtt.golang#727\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePotential panic when using manual ACK by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse-paho/paho.mqtt.golang/pull/729\"\u003eeclipse-paho/paho.mqtt.golang#729\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/compare/v1.5.0...v1.5.1\"\u003ehttps://github.com/eclipse-paho/paho.mqtt.golang/compare/v1.5.0...v1.5.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.5.0\u003c/h2\u003e\n\u003cp\u003eIn the year since the release of v1.4.3 the majority of changes have been small incremental improvements/fixes. One notable change is that Go v1.20+ is now required (due to PR \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/646\"\u003e#646\u003c/a\u003e).\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eWrap connection network errors by \u003ca href=\"https://github.com/adriansmares\"\u003e\u003ccode\u003e@​adriansmares\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/646\"\u003eeclipse/paho.mqtt.golang#646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eClarify use of token.WaitTimeout by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/659\"\u003eeclipse/paho.mqtt.golang#659\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix (\u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/issues/661\"\u003e#661\u003c/a\u003e): Add NewClientOptionsReader for mocking purposes. by \u003ca href=\"https://github.com/avmunm\"\u003e\u003ccode\u003e@​avmunm\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/662\"\u003eeclipse/paho.mqtt.golang#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: fix keep-alive timeouts on small intervals by \u003ca href=\"https://github.com/lefinal\"\u003e\u003ccode\u003e@​lefinal\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/667\"\u003eeclipse/paho.mqtt.golang#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eReplace the time.After with the timer for efficiency. by \u003ca href=\"https://github.com/DVasselli\"\u003e\u003ccode\u003e@​DVasselli\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/671\"\u003eeclipse/paho.mqtt.golang#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: deprecation warnings for ioutil by \u003ca href=\"https://github.com/vruge\"\u003e\u003ccode\u003e@​vruge\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/665\"\u003eeclipse/paho.mqtt.golang#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: issue 675：goroutine leak when connectionUp(true) return error by \u003ca href=\"https://github.com/kiqi007\"\u003e\u003ccode\u003e@​kiqi007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/678\"\u003eeclipse/paho.mqtt.golang#678\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate dependencies by \u003ca href=\"https://github.com/MattBrittan\"\u003e\u003ccode\u003e@​MattBrittan\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/683\"\u003eeclipse/paho.mqtt.golang#683\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/adriansmares\"\u003e\u003ccode\u003e@​adriansmares\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/646\"\u003eeclipse/paho.mqtt.golang#646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/avmunm\"\u003e\u003ccode\u003e@​avmunm\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/662\"\u003eeclipse/paho.mqtt.golang#662\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/lefinal\"\u003e\u003ccode\u003e@​lefinal\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/667\"\u003eeclipse/paho.mqtt.golang#667\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/DVasselli\"\u003e\u003ccode\u003e@​DVasselli\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/671\"\u003eeclipse/paho.mqtt.golang#671\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vruge\"\u003e\u003ccode\u003e@​vruge\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/665\"\u003eeclipse/paho.mqtt.golang#665\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kiqi007\"\u003e\u003ccode\u003e@​kiqi007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/eclipse/paho.mqtt.golang/pull/678\"\u003eeclipse/paho.mqtt.golang#678\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/eclipse/paho.mqtt.golang/compare/v1.4.3...v1.5.0\"\u003ehttps://github.com/eclipse/paho.mqtt.golang/compare/v1.4.3...v1.5.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/b30523793968e6b7a7b1f76338a58c4fe9755299\"\u003e\u003ccode\u003eb305237\u003c/code\u003e\u003c/a\u003e Update dependencies in docker examples\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/35ee03d8496f3256cc2bf7af15fea56e21c29c96\"\u003e\u003ccode\u003e35ee03d\u003c/code\u003e\u003c/a\u003e Potential panic when using manual ACK\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/433bd22ae6ac92daf00d575def72e425bc21e39f\"\u003e\u003ccode\u003e433bd22\u003c/code\u003e\u003c/a\u003e address data race in test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/4debe3a76a5aa8f27a2616e2d4e3fc53be0dc788\"\u003e\u003ccode\u003e4debe3a\u003c/code\u003e\u003c/a\u003e Potential panic when using manual ACK\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/601453b38642642382165ab9689b20cd025d102a\"\u003e\u003ccode\u003e601453b\u003c/code\u003e\u003c/a\u003e Resolve issues in fvt_client_test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/439e2ab4c07d55c124fe03e8bb6273b93c88b61a\"\u003e\u003ccode\u003e439e2ab\u003c/code\u003e\u003c/a\u003e Dependency update (also rise Go version to 1.24)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/d27659335abe44a2838ac4c8e807dd66ee208ed0\"\u003e\u003ccode\u003ed276593\u003c/code\u003e\u003c/a\u003e ConnectionNotificationHandler - generic callback for all types of connection ...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/8a350a9cff7682fc5d8d741b6e9c5b7def7b2661\"\u003e\u003ccode\u003e8a350a9\u003c/code\u003e\u003c/a\u003e notifications\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/5620c5ed09ab99bde96402f052e548fd95d4e0c3\"\u003e\u003ccode\u003e5620c5e\u003c/code\u003e\u003c/a\u003e notifications\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/eclipse-paho/paho.mqtt.golang/commit/45048ccc79f333b4ac41ab1723aa94d63fb5ed01\"\u003e\u003ccode\u003e45048cc\u003c/code\u003e\u003c/a\u003e notifications\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/eclipse/paho.mqtt.golang/compare/v1.4.3...v1.5.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.9 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/9d122a61c181b044e6b8b9c09979dfe7c513e2db\"\u003e\u003ccode\u003e9d122a6\u003c/code\u003e\u003c/a\u003e release version v0.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4ce6f08566c86bf66a9bc1c2f811336ae2e462c0\"\u003e\u003ccode\u003e4ce6f08\u003c/code\u003e\u003c/a\u003e lzma: fix handling of small dictionary sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/0b7c695d23f84aa7e968bbcaa1980847683d909a\"\u003e\u003ccode\u003e0b7c695\u003c/code\u003e\u003c/a\u003e xz: add reader benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/553507794087117cd9bdc95c924c1c5611bd991a\"\u003e\u003ccode\u003e5535077\u003c/code\u003e\u003c/a\u003e xz: add compression reate to Writer benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/886dc9acde193dec013d4812372011c64f6efbc2\"\u003e\u003ccode\u003e886dc9a\u003c/code\u003e\u003c/a\u003e xz: add benchmark for Writer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.9...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.12.0 to 0.42.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/5307a0ce6db8057c8d7c4378dc4bd715b4985ba1\"\u003e\u003ccode\u003e5307a0c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/9d779377cff7ff1f58520cc044fb90b10ddfc561\"\u003e\u003ccode\u003e9d77937\u003c/code\u003e\u003c/a\u003e acme: include order problem in OrderError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8f580defa01dec23898d3cd27f6369cdcc62f71f\"\u003e\u003ccode\u003e8f580de\u003c/code\u003e\u003c/a\u003e ssh: remove Go 1.24 build tag for ML-KEM kex\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a4d1237429d6056ef197b0b911b8b9d7dca8ecf6\"\u003e\u003ccode\u003ea4d1237\u003c/code\u003e\u003c/a\u003e ssh/knownhosts: improve IPv6 support in Normalize\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b8d8dae13d7dda8706ca2ab98934ad404aacae22\"\u003e\u003ccode\u003eb8d8dae\u003c/code\u003e\u003c/a\u003e curve25519: include potential fips140=only error in panic message\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f5a2eabcab987dc84f30d5479ed5c5605b5de634\"\u003e\u003ccode\u003ef5a2eab\u003c/code\u003e\u003c/a\u003e ssh: use curve25519.X25519 instead of curve25519.ScalarMult\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/44ecf3af9978b32529ce689a6964bd557c79aa1c\"\u003e\u003ccode\u003e44ecf3a\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.24.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/ef5341b70697ceb55f904384bd982587224e8b0c\"\u003e\u003ccode\u003eef5341b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b999374650442ee37e9bbd97d6a11ad7ed999b98\"\u003e\u003ccode\u003eb999374\u003c/code\u003e\u003c/a\u003e acme: fix pebble subprocess output data race\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c247dead11de7671a21a6c5169555e2aa5313caa\"\u003e\u003ccode\u003ec247dea\u003c/code\u003e\u003c/a\u003e x509roots/fallback: store bundle certs directly in DER\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.12.0...v0.42.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/image` from 0.11.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/23ae9ed61c1d3343fb95015810f62dcbf444976e\"\u003e\u003ccode\u003e23ae9ed\u003c/code\u003e\u003c/a\u003e tiff: cap buffer growth to prevent OOM from malicious IFD offset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e589e60f29d0bbbf6400e250e024f93cbc4961ee\"\u003e\u003ccode\u003ee589e60\u003c/code\u003e\u003c/a\u003e webp: allow VP8L + VP8X(with alpha)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/fe7d73de74b8a1ad508c93cfcb245d44579163ff\"\u003e\u003ccode\u003efe7d73d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e3d762b1d37ed96e757e3bc0bfb44f7455589df3\"\u003e\u003ccode\u003ee3d762b\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.25.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/833c6ed987962feaa3ec2624d8655421b25e2e0e\"\u003e\u003ccode\u003e833c6ed\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/bc7fe0b43a01586e7ca7c087a2e8a625e8397dcb\"\u003e\u003ccode\u003ebc7fe0b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/c53c97f4ed88d55fafe963ee6e93cb357663d650\"\u003e\u003ccode\u003ec53c97f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9032ff7c7b86f42b9bebdf6133191648224aecc0\"\u003e\u003ccode\u003e9032ff7\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9c9d08c65c08567c997eccc8bde52fcc9369bea6\"\u003e\u003ccode\u003e9c9d08c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/742b1b756d98a0c48b1fcf464a0c63fa50e1aa6b\"\u003e\u003ccode\u003e742b1b7\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/image/compare/v0.11.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.14.0 to 0.44.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/3b23d576ea72235a3fef8f157eb5ab76e65854a8\"\u003e\u003ccode\u003e3b23d57\u003c/code\u003e\u003c/a\u003e http2: fix race condition when disabling goroutine debugging for one test\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/87410502ff26318c9bd1be1c9a09e0a681774dcf\"\u003e\u003ccode\u003e8741050\u003c/code\u003e\u003c/a\u003e http2: simplify TestServer_Push_RejectAfterGoAway\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/96e405cac15ef9a113f2b30d3f3f8a216234f09c\"\u003e\u003ccode\u003e96e405c\u003c/code\u003e\u003c/a\u003e http2: modernize TestTransportRoundtripCloseOnWriteError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6dc6880bcd7edc82184626a363d26d65bc55c195\"\u003e\u003ccode\u003e6dc6880\u003c/code\u003e\u003c/a\u003e http2: simplify ClientConn Close and Shutdown tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4e2915b652483bfc9831c080e40c679e42616f03\"\u003e\u003ccode\u003e4e2915b\u003c/code\u003e\u003c/a\u003e http2: modernize TestTransportAllocationsAfterResponseBodyClose\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/30b0e78859f03d66b2e275870d5d37455d2f0fb0\"\u003e\u003ccode\u003e30b0e78\u003c/code\u003e\u003c/a\u003e http2: modernize TestRoundTripDoesntConsumeRequestBodyEarly\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b9acd777f1852925992bdeaa623de8cc86efa4eb\"\u003e\u003ccode\u003eb9acd77\u003c/code\u003e\u003c/a\u003e http2: speed up TestTransportFlowControl\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5153f4db3143a3be6ce383b512ba7a4c0f935211\"\u003e\u003ccode\u003e5153f4d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9338bdd9eeddfeab331342288acfef2293474490\"\u003e\u003ccode\u003e9338bdd\u003c/code\u003e\u003c/a\u003e http2: speed up TestTransportHandlerBodyClose\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6b200364a6614a5cf8d360d854e998c1dc739f24\"\u003e\u003ccode\u003e6b20036\u003c/code\u003e\u003c/a\u003e http2: add synchronous handler support to serverTester\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.14.0...v0.44.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.11.0 to 0.27.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/681b4d8edca1bcfea5bce685d77ea7b82ed3e7b3\"\u003e\u003ccode\u003e681b4d8\u003c/code\u003e\u003c/a\u003e jws: split token into fixed number of parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3f78298beea38fb76a3fbca33e3056f4b7eb5502\"\u003e\u003ccode\u003e3f78298\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.23.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/109dabf9017129171d1807e485ca5633ecd095ac\"\u003e\u003ccode\u003e109dabf\u003c/code\u003e\u003c/a\u003e endpoints: add links/provider for Discord\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/ac571fa341c2a2b979d2b2c8341fd24767ef5d47\"\u003e\u003ccode\u003eac571fa\u003c/code\u003e\u003c/a\u003e oauth2: fix docs for Config.DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/314ee5b92bf23c4973aa8e61eba3ff458e80eef2\"\u003e\u003ccode\u003e314ee5b\u003c/code\u003e\u003c/a\u003e endpoints: add patreon endpoint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/b9c813be7d0ec3262d46deb8677ba5cda93d95ec\"\u003e\u003ccode\u003eb9c813b\u003c/code\u003e\u003c/a\u003e google: add warning about externally-provided credentials\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/49a531d12a9ad6fa9f5a070d577ac752ada772c9\"\u003e\u003ccode\u003e49a531d\u003c/code\u003e\u003c/a\u003e all: make method and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/22134a41033e44c2cd074106770ab5b7ca910d15\"\u003e\u003ccode\u003e22134a4\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3e6480915d39dd1a80fa460e56413857f02cc1b9\"\u003e\u003ccode\u003e3e64809\u003c/code\u003e\u003c/a\u003e x/oauth2: add Token.ExpiresIn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/16a9973a41c72ea3e252e9c14be34fcaa2928211\"\u003e\u003ccode\u003e16a9973\u003c/code\u003e\u003c/a\u003e jwt: rename example to avoid vet error\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.11.0...v0.27.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/protobuf` from 1.31.0 to 1.33.0\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/loveyou001/GoSungrow/network/alerts).\n\n\u003c/details\u003e\n\n\u003c!-- This is an auto-generated description by cubic. --\u003e\n---\n## Summary by cubic\nUpgrade Go to 1.25.0 and update core dependencies for security and stability, including MQTT, compression, x/*, and protobuf. This reduces known CVE exposure and aligns the project with current Go library APIs.\n\n- **Dependencies**\n  - Require Go 1.25.0 in `go.mod`.\n  - Update `github.com/eclipse/paho.mqtt.golang` to 1.5.1 (includes CVE-2025-10543 fix and stability improvements).\n  - Update `golang.org/x/*`: `crypto` 0.42.0, `image` 0.38.0, `net` 0.44.0, `oauth2` 0.27.0.\n  - Update `github.com/ulikunitz/xz` to 0.5.14 (security), `google.golang.org/protobuf` to 1.33.0, `github.com/gorilla/websocket` to 1.5.3.\n  - Add/pin `github.com/MickMake/GoUnify` subpackages required by the app.\n\n- **Migration**\n  - Use Go 1.25+ locally and in CI.\n  - Rebuild and run tests; no code changes expected.\n\n\u003csup\u003eWritten for commit 1cf8a627e435730ac91e0b8d8b420ff643887d7c. Summary will update on new commits.\u003c/sup\u003e\n\n\u003c!-- End of auto-generated description by cubic. --\u003e\n\n","html_url":"https://github.com/loveyou001/GoSungrow/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/loveyou001%2FGoSungrow/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"0.5.10","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-04-08T19:29:42.000Z","version_change":"0.5.10 → 0.5.14","issue":{"uuid":"4227111316","node_id":"PR_kwDOOguN787Q6ciV","number":5,"state":"closed","title":"Bump the go_modules group across 5 directories with 9 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-10T18:23:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T19:29:42.000Z","updated_at":"2026-04-10T18:23:22.000Z","time_to_close":168819,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":9,"packages":[{"name":"github.com/hashicorp/go-getter","old_version":"1.7.8","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.31.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"golang.org/x/crypto","old_version":"0.36.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"google.golang.org/grpc","old_version":"1.69.4","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/antchfx/xpath","old_version":"1.1.10","new_version":"1.3.6","repository_url":"https://github.com/antchfx/xpath"},{"name":"github.com/cli/go-gh/v2","old_version":"2.11.2","new_version":"2.12.1","repository_url":"https://github.com/cli/go-gh"},{"name":"github.com/cloudflare/circl","old_version":"1.4.0","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.10","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp","old_version":"1.19.0","new_version":"1.43.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.8` | `1.7.9` |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.31.0` | `1.43.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.36.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.69.4` | `1.79.3` |\n| [github.com/antchfx/xpath](https://github.com/antchfx/xpath) | `1.1.10` | `1.3.6` |\n| [github.com/cli/go-gh/v2](https://github.com/cli/go-gh) | `2.11.2` | `2.12.1` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.4.0` | `1.6.3` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.10` | `0.5.14` |\n| [go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp](https://github.com/open-telemetry/opentelemetry-go) | `1.19.0` | `1.43.0` |\n\nBumps the go_modules group with 1 update in the /internal/backend/remote-state/azure directory: [golang.org/x/crypto](https://github.com/golang/crypto).\nBumps the go_modules group with 2 updates in the /internal/backend/remote-state/gcs directory: [golang.org/x/crypto](https://github.com/golang/crypto) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /internal/backend/remote-state/kubernetes directory: [golang.org/x/crypto](https://github.com/golang/crypto).\nBumps the go_modules group with 1 update in the /internal/backend/remote-state/oci directory: [golang.org/x/crypto](https://github.com/golang/crypto).\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.8 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.31.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.31.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.69.4 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.69.4...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/antchfx/xpath` from 1.1.10 to 1.3.6\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/antchfx/xpath/releases\"\u003egithub.com/antchfx/xpath's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.3.6\u003c/h2\u003e\n\u003cp\u003eMerged PR:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/120\"\u003e#120\u003c/a\u003e(\u003ca href=\"https://github.com/mislav\"\u003e\u003ccode\u003e@​mislav\u003c/code\u003e\u003c/a\u003e) - Fix \u003ccode\u003elast()\u003c/code\u003e predicate on grouped expr.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/121\"\u003e#121\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease v1.3.5\u003c/h2\u003e\n\u003cp\u003eMerged PR:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/117\"\u003e#117\u003c/a\u003e(\u003ca href=\"https://github.com/mislav\"\u003e\u003ccode\u003e@​mislav\u003c/code\u003e\u003c/a\u003e）- fix \u003ccode\u003eancestor::\u003c/code\u003e axes with position predicate.\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/113\"\u003e#113\u003c/a\u003e - (fix \u003ccode\u003estring()\u003c/code\u003e function)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.4\u003c/h2\u003e\n\u003cp\u003eMerged PR:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/107\"\u003e#107\u003c/a\u003e(\u003ca href=\"https://github.com/Mrflatt\"\u003e\u003ccode\u003e@​Mrflatt\u003c/code\u003e\u003c/a\u003e) - supports Regexp feature in \u003ccode\u003ereplace()\u003c/code\u003e function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/111\"\u003e#111\u003c/a\u003e(\u003ca href=\"https://github.com/wjc4\"\u003e\u003ccode\u003e@​wjc4\u003c/code\u003e\u003c/a\u003e) - Improve \u003ccode\u003egetHashCode\u003c/code\u003e performance\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eFixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/109\"\u003e#109\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.3\u003c/h2\u003e\n\u003cp\u003efix non-English predicate query \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/106\"\u003e#106\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.3.2\u003c/h2\u003e\n\u003cp\u003eNew Features:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eSupports Unicode chars for Non-English (PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/100\"\u003e#100\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eBug Fixed:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/101\"\u003e#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/102\"\u003e#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/104\"\u003e#104\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eMerged PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/97\"\u003e#97\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eAllows node-set numeric operator \u003ccode\u003e+\u003c/code\u003e, \u003ccode\u003e-\u003c/code\u003e, \u003ccode\u003emod()\u003c/code\u003e.\u003ca href=\"https://github.com/antchfx/xpath/commit/4b4638b370e898a9d10709464b8cd460b7dcfd0c\"\u003ehttps://github.com/antchfx/xpath/commit/4b4638b370e898a9d10709464b8cd460b7dcfd0c\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/98\"\u003e#98\u003c/a\u003e, Remove the duplicate element filter \u003ca href=\"https://github.com/antchfx/xpath/commit/5481aef473ee298d297387f5b69e2768df09e0c4\"\u003ehttps://github.com/antchfx/xpath/commit/5481aef473ee298d297387f5b69e2768df09e0c4\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.3.0\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efixes \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/93\"\u003e#93\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eNew features:\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/afd4762cc342af56345a3fb4002a59281fcab494\"\u003e\u003ccode\u003eafd4762\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/121\"\u003e#121\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/a8ced8f559cd68fc4aedfc87f21599d1190c0852\"\u003e\u003ccode\u003ea8ced8f\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/120\"\u003e#120\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/c92c3ebebbdd67f715161810f97ecfbcaa47921e\"\u003e\u003ccode\u003ec92c3eb\u003c/code\u003e\u003c/a\u003e Fix last() predicate on grouped expressions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/3cbab9750ea36cbae6f967ebbf29b9eda0e841bf\"\u003e\u003ccode\u003e3cbab97\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/119\"\u003e#119\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/02c01b0b4051e7edd1bf40f3d595cc9143936aaa\"\u003e\u003ccode\u003e02c01b0\u003c/code\u003e\u003c/a\u003e Fix chained predicates on ancestor axis\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/511abd57bc74e9644fe27f4e52b559065e686e92\"\u003e\u003ccode\u003e511abd5\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/117\"\u003e#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/060b15493444a0e6c5a232022516e434818f7391\"\u003e\u003ccode\u003e060b154\u003c/code\u003e\u003c/a\u003e Fix positional predicate for the \u0026quot;ancestor\u0026quot; axis\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/8d50c252d867285812177ffd3ff0924104ffb1eb\"\u003e\u003ccode\u003e8d50c25\u003c/code\u003e\u003c/a\u003e fix \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/112\"\u003e#112\u003c/a\u003e，\u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/113\"\u003e#113\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/b9e198da9fb170a229c9c7e27d52e1a350636f4c\"\u003e\u003ccode\u003eb9e198d\u003c/code\u003e\u003c/a\u003e Merge PR \u003ca href=\"https://redirect.github.com/antchfx/xpath/issues/111\"\u003e#111\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/antchfx/xpath/commit/fcb882bece30fe7d4d8f5069fed13f95a726e62f\"\u003e\u003ccode\u003efcb882b\u003c/code\u003e\u003c/a\u003e improve getHashCode by removing fmt.Sprintf\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/antchfx/xpath/compare/v1.1.10...v1.3.6\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cli/go-gh/v2` from 2.11.2 to 2.12.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cli/go-gh/releases\"\u003egithub.com/cli/go-gh/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.12.1\u003c/h2\u003e\n\u003ch2\u003eSecurity\u003c/h2\u003e\n\u003cp\u003eA security vulnerability has been identified in \u003ccode\u003ego-gh\u003c/code\u003e where an attacker-controlled GitHub Enterprise Server could result in executing arbitrary commands on a user's machine by replacing HTTP URLs provided by GitHub with local file paths for browsing.\u003c/p\u003e\n\u003cp\u003eFor more information, see GHSA-g9f5-x53j-h563\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cli/go-gh/compare/v2.12.0...v2.12.1\"\u003ehttps://github.com/cli/go-gh/compare/v2.12.0...v2.12.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.12.0\u003c/h2\u003e\n\u003ch2\u003eIntroducing experimental support for rendering markdown with customizable, accessible colors\u003c/h2\u003e\n\u003cp\u003eUsers with low vision or color blindness rely upon the terminal's ability to change how colors appear, however this requires CLIs to use a limited set of colors:\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eThe \u003ca href=\"https://pkg.go.dev/github.com/cli/go-gh/v2/pkg/markdown\"\u003emarkdown rendered\u003c/a\u003e for GitHub CLI and extensions defaults to \u003ca href=\"https://en.wikipedia.org/wiki/ANSI_escape_code#8-bit\"\u003e8-bit colors\u003c/a\u003e that users cannot easily customize in this way.\u003c/p\u003e\n\u003cp\u003eNow, users can force rendered markdown to use customizable, accessible colors by doing one of the following:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003e\n\u003cp\u003eSet \u003ccode\u003eGH_ACCESSIBLE_COLORS\u003c/code\u003e environment variable to a truthy value\u003c/p\u003e\n\u003cpre lang=\"shell\"\u003e\u003ccode\u003eexport GH_ACCESSIBLE_COLORS=1\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003eSet \u003ccode\u003eaccessible_colors\u003c/code\u003e configuration setting\u003c/p\u003e\n\u003cpre lang=\"shell\"\u003e\u003ccode\u003egh config set accessible_colors enabled\r\n\u003c/code\u003e\u003c/pre\u003e\n\u003c/li\u003e\n\u003c/ol\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/user-attachments/assets/ccf829c5-6987-453b-a72a-51f452a80d26\"\u003ehttps://github.com/user-attachments/assets/ccf829c5-6987-453b-a72a-51f452a80d26\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003eUsers with a \u003ca href=\"https://github.com/charmbracelet/glamour?tab=readme-ov-file#styles\"\u003ecustom\u003ccode\u003echarmbracelet/glamour\u003c/code\u003e style\u003c/a\u003e will continue to have markdown rendered using it.\u003c/p\u003e\n\u003cp\u003eFor more information, see \u003ca href=\"https://redirect.github.com/cli/go-gh/pull/186\"\u003ecli/go-gh#186\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eIntroducing new experimental \u003ccode\u003egithub.com/cli/go-gh/v2/pkg/x\u003c/code\u003e package\u003c/h2\u003e\n\u003cp\u003e\u003ccode\u003ecli/go-gh\u003c/code\u003e provides capabilities used by both the GitHub CLI and CLI extensions.  Some of these packages are stable, however some like the new experimental markdown support are not.\u003c/p\u003e\n\u003cp\u003eThe \u003ca href=\"https://pkg.go.dev/github.com/cli/go-gh/v2/pkg/x\"\u003e\u003ccode\u003egithub.com/cli/go-gh/v2/pkg/x\u003c/code\u003e package\u003c/a\u003e has been created to contain experimental features that are subject to change without notice.\u003c/p\u003e\n\u003ch2\u003eIntroducing new string matcher functions for Go templates\u003c/h2\u003e\n\u003cp\u003eThe following string matcher functions from \u003ca href=\"https://github.com/Masterminds/sprig\"\u003eMasterminds/sprig\u003c/a\u003e have been incorporated for more robust Go template support in GitHub CLI and CLI extensions:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://masterminds.github.io/sprig/strings.html#contains\"\u003e\u003ccode\u003econtains\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://masterminds.github.io/sprig/strings.html#hasprefix-and-hassuffix\"\u003e\u003ccode\u003ehasPrefix\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/a08820a13f257d6c5b4cb86d37db559ec6d14577\"\u003e\u003ccode\u003ea08820a\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/1ecf6c49ecb0629c6538d88970b669bf4f989ccc\"\u003e\u003ccode\u003e1ecf6c4\u003c/code\u003e\u003c/a\u003e Expand test cases for schem case sensitivity\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/56c6f10bd535e14098f5a21232f931463c808a77\"\u003e\u003ccode\u003e56c6f10\u003c/code\u003e\u003c/a\u003e Parse and examine URL, assume scheme if missing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/055ff2108e3edff35996a8efa3afa0a9e64649f1\"\u003e\u003ccode\u003e055ff21\u003c/code\u003e\u003c/a\u003e PR feedback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/258949bd372e4689d3203cbcef8734062ff59a97\"\u003e\u003ccode\u003e258949b\u003c/code\u003e\u003c/a\u003e Test refactor, refine errors, remove VSCode fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/0f8a22fe3a4b3d418268dfef57bcee15330f5b15\"\u003e\u003ccode\u003e0f8a22f\u003c/code\u003e\u003c/a\u003e Enhance OS-specific browser tests, PR feedback\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/df956a6624bc1210543873062ce0905357be1299\"\u003e\u003ccode\u003edf956a6\u003c/code\u003e\u003c/a\u003e Initial fix for browsing URLs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/61bf393cf4aeea6d00a6251390f5f67f5b67e727\"\u003e\u003ccode\u003e61bf393\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/cli/go-gh/issues/186\"\u003e#186\u003c/a\u003e from cli/accessible-colors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/024a89fbbde5be08804eaaea00fceb77c4d787dd\"\u003e\u003ccode\u003e024a89f\u003c/code\u003e\u003c/a\u003e Remove toolchain directive from library\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cli/go-gh/commit/09a555fed28dc12b9dba40c1fa911ce8ac2645ae\"\u003e\u003ccode\u003e09a555f\u003c/code\u003e\u003c/a\u003e Disable table wrapping for all\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cli/go-gh/compare/v2.11.2...v2.12.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.4.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.4.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.10 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/9d122a61c181b044e6b8b9c09979dfe7c513e2db\"\u003e\u003ccode\u003e9d122a6\u003c/code\u003e\u003c/a\u003e release version v0.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4ce6f08566c86bf66a9bc1c2f811336ae2e462c0\"\u003e\u003ccode\u003e4ce6f08\u003c/code\u003e\u003c/a\u003e lzma: fix handling of small dictionary sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/0b7c695d23f84aa7e968bbcaa1980847683d909a\"\u003e\u003ccode\u003e0b7c695\u003c/code\u003e\u003c/a\u003e xz: add reader benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/553507794087117cd9bdc95c924c1c5611bd991a\"\u003e\u003ccode\u003e5535077\u003c/code\u003e\u003c/a\u003e xz: add compression reate to Writer benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/886dc9acde193dec013d4812372011c64f6efbc2\"\u003e\u003ccode\u003e886dc9a\u003c/code\u003e\u003c/a\u003e xz: add benchmark for Writer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.10...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp` from 1.19.0 to 1.43.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/releases\"\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease v1.23.0-rc.1\u003c/h2\u003e\n\u003cp\u003eThis is a release candidate for the v1.23.0 release. That release is expected to include the \u003ccode\u003ev1\u003c/code\u003e release of the following modules:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/bridge/opencensus\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/bridge/opencensus/test\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/example/opencensus\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eSee our \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/8f2bdf85ed99c6532b8c76688e7ffcf9e48c3e6d/VERSIONING.md\"\u003eversioning policy\u003c/a\u003e for more information about these stability guarantees.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.43.0/0.65.0/0.19.0] 2026-04-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eIsRandom\u003c/code\u003e and \u003ccode\u003eWithRandom\u003c/code\u003e on \u003ccode\u003eTraceFlags\u003c/code\u003e, and \u003ccode\u003eIsRandom\u003c/code\u003e on \u003ccode\u003eSpanContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e for \u003ca href=\"https://www.w3.org/TR/trace-context-2/#random-trace-id-flag\"\u003eW3C Trace Context Level 2 Random Trace ID Flag\u003c/a\u003e support. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8012\"\u003e#8012\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd service detection with \u003ccode\u003eWithService\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7642\"\u003e#7642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eDefaultWithContext\u003c/code\u003e and \u003ccode\u003eEnvironmentWithContext\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to support plumbing \u003ccode\u003econtext.Context\u003c/code\u003e through default and environment detectors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8051\"\u003e#8051\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetricgrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport attributes with empty value (\u003ccode\u003eattribute.EMPTY\u003c/code\u003e) in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for per-series start time tracking for cumulative metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e.\nSet \u003ccode\u003eOTEL_GO_X_PER_SERIES_START_TIMESTAMPS=true\u003c/code\u003e to enable. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8060\"\u003e#8060\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithCardinalityLimitSelector\u003c/code\u003e for metric reader for configuring cardinality limits specific to the instrument kind. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7855\"\u003e#7855\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eIntroduce the \u003ccode\u003eEMPTY\u003c/code\u003e Type in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to reflect that an empty value is now a valid value, with \u003ccode\u003eINVALID\u003c/code\u003e remaining as a deprecated alias of \u003ccode\u003eEMPTY\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove slice handling in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e to optimize short slice values with fixed-size fast paths. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8039\"\u003e#8039\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of span metric recording in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e by returning early if self-observability is not enabled. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8067\"\u003e#8067\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove formatting of metric data diffs in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/metricdata/metricdatatest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8073\"\u003e#8073\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003eINVALID\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/attribute\u003c/code\u003e. Use \u003ccode\u003eEMPTY\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8038\"\u003e#8038\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eReturn spec-compliant \u003ccode\u003eTraceIdRatioBased\u003c/code\u003e description. This is a breaking behavioral change, but it is necessary to\nmake the implementation \u003ca href=\"https://opentelemetry.io/docs/specs/otel/trace/sdk/#traceidratiobased\"\u003espec-compliant\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8027\"\u003e#8027\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix a race condition in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e where the lastvalue aggregation could collect the value 0 even when no zero-value measurements were recorded. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8056\"\u003e#8056\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlpmetric/otlpmetrichttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eLimit HTTP response body to 4 MiB in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to mitigate excessive memory usage caused by a misconfigured or malicious server.\nResponses exceeding the limit are treated as non-retryable errors. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003ekenv\u003c/code\u003e command on BSD. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e to correctly handle HTTP2 GOAWAY frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.42.0/0.64.0/0.18.0/0.0.16] 2026-03-06\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.40.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.40.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.40.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7985\"\u003e#7985\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/9276201a64b623606e3eaa0d61ae8ee6d62756c0\"\u003e\u003ccode\u003e9276201\u003c/code\u003e\u003c/a\u003e Release v1.43.0 / v0.65.0 / v0.19.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8128\"\u003e#8128\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/61b8c9466c4e6b17e69b622279fe9b63fb15c89a\"\u003e\u003ccode\u003e61b8c94\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/mattn/go-runewidth to v0.0.22 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8131\"\u003e#8131\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/97a086e82ffe01502f4c620e9c447efa229e2a23\"\u003e\u003ccode\u003e97a086e\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/golangci/dupl digest to c99c5cf (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8122\"\u003e#8122\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5e363de517dba6db62736b2f5cdef0e0929b4cd0\"\u003e\u003ccode\u003e5e363de\u003c/code\u003e\u003c/a\u003e limit response body size for OTLP HTTP exporters (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8108\"\u003e#8108\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/35214b60138eac8dec97a2d2b851d8c8471680c7\"\u003e\u003ccode\u003e35214b6\u003c/code\u003e\u003c/a\u003e Use an absolute path when calling bsd kenv (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8113\"\u003e#8113\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/290024ceaf695f9cdbf29a0c6731a317d92bc361\"\u003e\u003ccode\u003e290024c\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.80.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8121\"\u003e#8121\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e70658e098033d6bb5ec1b399de16bbb2642f6dc\"\u003e\u003ccode\u003ee70658e\u003c/code\u003e\u003c/a\u003e fix: support getBody in otelploghttp (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8096\"\u003e#8096\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/4afe468e3b4859c949a1c1e8d92684d43d86ef8a\"\u003e\u003ccode\u003e4afe468\u003c/code\u003e\u003c/a\u003e fix(deps): update googleapis to 9d38bb4 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8117\"\u003e#8117\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/b9ca729776309e3c08fe700c131797a3b4d10634\"\u003e\u003ccode\u003eb9ca729\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/go-git/go-git/v5 to v5.17.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8115\"\u003e#8115\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/69472ec56cb7674d55ca2e2bcb04dea73228ab79\"\u003e\u003ccode\u003e69472ec\u003c/code\u003e\u003c/a\u003e chore(deps): update fossas/fossa-action action to v1.9.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/8118\"\u003e#8118\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.19.0...v1.43.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` fro...\n\n_Description has been truncated_","html_url":"https://github.com/Sin-Estres-dev/terraform/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Sin-Estres-dev%2Fterraform/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-04-08T02:57:54.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4221770763","node_id":"PR_kwDONtFecc7QrU1Y","number":8,"state":"closed","title":"Bump the go_modules group across 3 directories with 12 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-10T18:23:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T02:57:54.000Z","updated_at":"2026-04-10T18:23:23.000Z","time_to_close":228327,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":12,"packages":[{"name":"golang.org/x/crypto","old_version":"0.31.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"github.com/cloudflare/circl","old_version":"1.5.0","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"google.golang.org/grpc","old_version":"1.68.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/go-git/go-git/v5","old_version":"5.12.0","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/golang-jwt/jwt/v4","old_version":"4.5.1","new_version":"4.5.2","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.6","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 3 updates in the /.ci/providerlint directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 8 updates in the /.ci/tools directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.31.0` | `0.45.0` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.5.0` | `1.6.3` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.68.1` | `1.79.3` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.12.0` | `5.17.1` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |\n| [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) | `4.5.1` | `4.5.2` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.6` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 3 updates in the /tools/tfsdk2fw directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\n\nUpdates `golang.org/x/crypto` from 0.32.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.34.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.67.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.31.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.32.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.68.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.12.0 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.12.0...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v4` from 4.5.1 to 4.5.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\"\u003ehttps://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ehttps://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/2f0e9add62078527821828c76865661aa7718a84\"\u003e\u003ccode\u003e2f0e9ad\u003c/code\u003e\u003c/a\u003e Backporting 0951d18 to v4\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.6 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scop...\n\n_Description has been truncated_","html_url":"https://github.com/Jackblanket847/terraform-provider-aws/pull/8","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jackblanket847%2Fterraform-provider-aws/issues/8","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/8/packages"}},{"old_version":"0.5.11","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-04-08T02:52:11.000Z","version_change":"0.5.11 → 0.5.14","issue":{"uuid":"4221754462","node_id":"PR_kwDOOjDzhc7QrRrU","number":6,"state":"open","title":"build(deps): bump the go_modules group across 5 directories with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-08T02:52:11.000Z","updated_at":"2026-04-08T02:52:15.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): bump","group_name":"go_modules","update_count":11,"packages":[{"name":"golang.org/x/crypto","old_version":"0.35.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"golang.org/x/oauth2","old_version":"0.26.0","new_version":"0.27.0","repository_url":"https://github.com/golang/oauth2"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.0.0-alpha.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/cloudflare/circl","old_version":"1.3.7","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/docker/cli","old_version":"27.4.1+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-git/v5","old_version":"5.13.1","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"golang.org/x/image","old_version":"0.24.0","new_version":"0.38.0","repository_url":"https://github.com/golang/image"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 9 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.35.0` | `0.45.0` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.26.0` | `0.27.0` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.0.0-alpha.1` | `2.4.0` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.7` | `1.6.3` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `27.4.1+incompatible` | `29.2.0+incompatible` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.13.1` | `5.17.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.11` | `0.5.14` |\n| [golang.org/x/image](https://github.com/golang/image) | `0.24.0` | `0.38.0` |\n\nBumps the go_modules group with 1 update in the /gokrazy/natlabapp.arm64/builddir/github.com/gokrazy/gokrazy/cmd/dhcp directory: [golang.org/x/net](https://github.com/golang/net).\nBumps the go_modules group with 1 update in the /gokrazy/natlabapp/builddir/github.com/gokrazy/gokrazy/cmd/dhcp directory: [golang.org/x/net](https://github.com/golang/net).\nBumps the go_modules group with 1 update in the /gokrazy/tsapp/builddir/github.com/gokrazy/breakglass directory: [golang.org/x/crypto](https://github.com/golang/crypto).\nBumps the go_modules group with 1 update in the /gokrazy/tsapp/builddir/github.com/gokrazy/gokrazy/cmd/dhcp directory: [golang.org/x/net](https://github.com/golang/net).\n\nUpdates `golang.org/x/crypto` from 0.35.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.35.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.36.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.26.0 to 0.27.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/681b4d8edca1bcfea5bce685d77ea7b82ed3e7b3\"\u003e\u003ccode\u003e681b4d8\u003c/code\u003e\u003c/a\u003e jws: split token into fixed number of parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3f78298beea38fb76a3fbca33e3056f4b7eb5502\"\u003e\u003ccode\u003e3f78298\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.23.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/109dabf9017129171d1807e485ca5633ecd095ac\"\u003e\u003ccode\u003e109dabf\u003c/code\u003e\u003c/a\u003e endpoints: add links/provider for Discord\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/ac571fa341c2a2b979d2b2c8341fd24767ef5d47\"\u003e\u003ccode\u003eac571fa\u003c/code\u003e\u003c/a\u003e oauth2: fix docs for Config.DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/314ee5b92bf23c4973aa8e61eba3ff458e80eef2\"\u003e\u003ccode\u003e314ee5b\u003c/code\u003e\u003c/a\u003e endpoints: add patreon endpoint\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.26.0...v0.27.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.0.0-alpha.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.0.0-alpha.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/aws/aws-sdk-go-v2/aws/protocol/eventstream` from 1.6.8 to 1.7.8\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e3b97d2a02cd4e27c40224f05aa1a7deba24abe2\"\u003e\u003ccode\u003ee3b97d2\u003c/code\u003e\u003c/a\u003e Release 2023-10-12\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/863010ddb23c242c2a5d49d9f40094a6a49b5525\"\u003e\u003ccode\u003e863010d\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6946ef8b9149fe75ac1b427ca2c7f57cdcb64549\"\u003e\u003ccode\u003e6946ef8\u003c/code\u003e\u003c/a\u003e Update endpoints model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/6d93ded4536184d38a664b4b75dadd36cbd79878\"\u003e\u003ccode\u003e6d93ded\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/bebc232e7f65b02d0b519d11e73cf925c38e716f\"\u003e\u003ccode\u003ebebc232\u003c/code\u003e\u003c/a\u003e fix: fail to load config if configured profile doesn't exist (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2309\"\u003e#2309\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/5de46742b7fb1b72d93d344ee81568800a707267\"\u003e\u003ccode\u003e5de4674\u003c/code\u003e\u003c/a\u003e fix DNS timeout error not retried (\u003ca href=\"https://redirect.github.com/aws/aws-sdk-go-v2/issues/2300\"\u003e#2300\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/e155bb72a2ec20ec61db50fc3d4568e373fa4b63\"\u003e\u003ccode\u003ee155bb7\u003c/code\u003e\u003c/a\u003e Release 2023-10-06\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/9d342ba33937c562d215f317a37dea121ee9763d\"\u003e\u003ccode\u003e9d342ba\u003c/code\u003e\u003c/a\u003e Regenerated Clients\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/1df99141a143a38570d64a182ed972ce9e3dba65\"\u003e\u003ccode\u003e1df9914\u003c/code\u003e\u003c/a\u003e Update SDK's smithy-go dependency to v1.15.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/aws/aws-sdk-go-v2/commit/32ada3a191ac770b1b24164b667692183fc77ed9\"\u003e\u003ccode\u003e32ada3a\u003c/code\u003e\u003c/a\u003e Update API model\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/aws/aws-sdk-go-v2/compare/service/rum/v1.6.8...service/m2/v1.7.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.3.7 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.3.7...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 27.4.1+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v27.4.1...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.13.1 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.13.1...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/image` from 0.24.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/23ae9ed61c1d3343fb95015810f62dcbf444976e\"\u003e\u003ccode\u003e23ae9ed\u003c/code\u003e\u003c/a\u003e tiff: cap buffer growth to prevent OOM from malicious IFD offset\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e589e60f29d0bbbf6400e250e024f93cbc4961ee\"\u003e\u003ccode\u003ee589e60\u003c/code\u003e\u003c/a\u003e webp: allow VP8L + VP8X(with alpha)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/fe7d73de74b8a1ad508c93cfcb245d44579163ff\"\u003e\u003ccode\u003efe7d73d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/e3d762b1d37ed96e757e3bc0bfb44f7455589df3\"\u003e\u003ccode\u003ee3d762b\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.25.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/833c6ed987962feaa3ec2624d8655421b25e2e0e\"\u003e\u003ccode\u003e833c6ed\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/bc7fe0b43a01586e7ca7c087a2e8a625e8397dcb\"\u003e\u003ccode\u003ebc7fe0b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/c53c97f4ed88d55fafe963ee6e93cb357663d650\"\u003e\u003ccode\u003ec53c97f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9032ff7c7b86f42b9bebdf6133191648224aecc0\"\u003e\u003ccode\u003e9032ff7\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/9c9d08c65c08567c997eccc8bde52fcc9369bea6\"\u003e\u003ccode\u003e9c9d08c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/image/commit/742b1b756d98a0c48b1fcf464a0c63fa50e1aa6b\"\u003e\u003ccode\u003e742b1b7\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/image/compare/v0.24.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.23.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.23.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.17.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.35.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.23.0 to 0.38.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e1fcd82abba34df74614020343be8eb1fe85f0d9\"\u003e\u003ccode\u003ee1fcd82\u003c/code\u003e\u003c/a\u003e html: properly handle trailing solidus in unquoted attribute value in foreign...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebed060e8f30f20235f74808c22125fd86b15edd\"\u003e\u003ccode\u003eebed060\u003c/code\u003e\u003c/a\u003e internal/http3: fix build of tests with GOEXPERIMENT=nosynctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/1f1fa29e0a46fffe18c43a9da8daa5a0b180dfa9\"\u003e\u003ccode\u003e1f1fa29\u003c/code\u003e\u003c/a\u003e publicsuffix: regenerate table\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/12150816f701c912a32a376754ab28dd3878833a\"\u003e\u003ccode\u003e1215081\u003c/code\u003e\u003c/a\u003e http2: improve error when server sends HTTP/1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/312450e473eae9f9e6173ad895c80bc5ea2f79ad\"\u003e\u003ccode\u003e312450e\u003c/code\u003e\u003c/a\u003e html: ensure \u0026lt;search\u0026gt; tag closes \u0026lt;p\u0026gt; and update tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/09731f9bf919b00b344c763894cd1920b3d96d90\"\u003e\u003ccode\u003e09731f9\u003c/code\u003e\u003c/a\u003e http2: improve handling of lost PING in Server\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/55989e24b972a90ab99308fdc7ea1fb58a96fef1\"\u003e\u003ccode\u003e55989e2\u003c/code\u003e\u003c/a\u003e http2/h2c: use ResponseController for hijacking connections\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2914f46773171f4fa13e276df1135bafef677801\"\u003e\u003ccode\u003e2914f46\u003c/code\u003e\u003c/a\u003e websocket: re-recommend gorilla/websocket\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/99b3ae0643f9a2f9d820fcbba5f9e4c83b23bd48\"\u003e\u003ccode\u003e99b3ae0\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/85d1d54551b68719346cb9fec24b911da4e452a1\"\u003e\u003ccode\u003e85d1d54\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.23.0...v0.38.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hakancllk35/tailscale/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/hakancllk35/tailscale/pull/6","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/hakancllk35%2Ftailscale/issues/6","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/6/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-04-08T01:43:11.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4221546909","node_id":"PR_kwDONtFecc7Qqomj","number":7,"state":"closed","title":"Bump the go_modules group across 3 directories with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T02:57:56.000Z","author_association":null,"state_reason":null,"created_at":"2026-04-08T01:43:11.000Z","updated_at":"2026-04-08T02:57:58.000Z","time_to_close":4485,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":11,"packages":[{"name":"golang.org/x/crypto","old_version":"0.31.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"github.com/cloudflare/circl","old_version":"1.5.0","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"google.golang.org/grpc","old_version":"1.68.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"github.com/go-git/go-git/v5","old_version":"5.12.0","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/golang-jwt/jwt/v4","old_version":"4.5.1","new_version":"4.5.2","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.6","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 3 updates in the /.ci/providerlint directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 8 updates in the /.ci/tools directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.31.0` | `0.45.0` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.5.0` | `1.6.3` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.68.1` | `1.79.3` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.12.0` | `5.17.1` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |\n| [github.com/golang-jwt/jwt/v4](https://github.com/golang-jwt/jwt) | `4.5.1` | `4.5.2` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.6` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 3 updates in the /tools/tfsdk2fw directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\n\nUpdates `golang.org/x/crypto` from 0.32.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.34.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.67.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.31.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.32.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.5.0 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.5.0...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.32.0 to 0.47.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9a296438e54dff851a45667aa645a97003b44db5\"\u003e\u003ccode\u003e9a29643\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/07cefd8a6bb170785052142a96034f2b2f7115bc\"\u003e\u003ccode\u003e07cefd8\u003c/code\u003e\u003c/a\u003e context: deprecate\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5ac9daca088ab4f378d7df849f6c7d28bea86071\"\u003e\u003ccode\u003e5ac9dac\u003c/code\u003e\u003c/a\u003e publicsuffix: don't treat ip addresses as domain names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/d1f64cc67036f272ea900194674afcf71eb3e816\"\u003e\u003ccode\u003ed1f64cc\u003c/code\u003e\u003c/a\u003e quic: use testing/synctest\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/fff0469cf57f71bea0cbc4cc8cbfb8f92be7a417\"\u003e\u003ccode\u003efff0469\u003c/code\u003e\u003c/a\u003e http2: document that RFC 7540 prioritization does not work with small payloads\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/f35e3a4dd2a34d1d47fac5b66210a40e2d374a79\"\u003e\u003ccode\u003ef35e3a4\u003c/code\u003e\u003c/a\u003e http2: fix weight overflow in RFC 7540 write scheduler\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/89adc90ac46a688eeda3a4a95b71acf073bd059c\"\u003e\u003ccode\u003e89adc90\u003c/code\u003e\u003c/a\u003e http2: fix typo referring to RFC 9218 as RFC 9128 instead\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8d76a2c082f6f995c2ef1ce8a0d56f2e33b48092\"\u003e\u003ccode\u003e8d76a2c\u003c/code\u003e\u003c/a\u003e quic: don't defer MAX_STREAMS frames indefinitely\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/027f8b700eb72af5c0175a945535a42670628351\"\u003e\u003ccode\u003e027f8b7\u003c/code\u003e\u003c/a\u003e quic: fix expected ACK Delay in client's ACK after HANDSHAKE_DONE\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dec9fe711ec1385a2aa169a3f8145d295abcca16\"\u003e\u003ccode\u003edec9fe7\u003c/code\u003e\u003c/a\u003e dns/dnsmessage: update SVCB packing to prohibit name compression\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.34.0...v0.47.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.68.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.67.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.12.0 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.12.0...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang-jwt/jwt/v4` from 4.5.1 to 4.5.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v4's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev4.5.2\u003c/h2\u003e\n\u003cp\u003eSee \u003ca href=\"https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\"\u003ehttps://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\u003c/a\u003e\u003c/p\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ehttps://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/2f0e9add62078527821828c76865661aa7718a84\"\u003e\u003ccode\u003e2f0e9ad\u003c/code\u003e\u003c/a\u003e Backporting 0951d18 to v4\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v4.5.1...v4.5.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.6 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scop...\n\n_Description has been truncated_","html_url":"https://github.com/Jackblanket847/terraform-provider-aws/pull/7","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Jackblanket847%2Fterraform-provider-aws/issues/7","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/7/packages"}},{"old_version":"0.5.8","new_version":"0.5.10","update_type":"patch","path":null,"pr_created_at":"2026-04-02T03:47:52.000Z","version_change":"0.5.8 → 0.5.10","issue":{"uuid":"4191323479","node_id":"PR_kwDOLiXWlM7PcDQi","number":104,"state":"open","title":"chore(deps): bump the go_modules group across 1 directory with 5 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-04-02T03:47:52.000Z","updated_at":"2026-04-02T03:49:12.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":5,"packages":[{"name":"golang.org/x/crypto","old_version":"0.44.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"github.com/cloudflare/circl","old_version":"1.6.1","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/hashicorp/go-getter","old_version":"1.6.1","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.8","new_version":"0.5.10"},{"name":"google.golang.org/grpc","old_version":"1.75.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the / directory: [golang.org/x/crypto](https://github.com/golang/crypto), [github.com/cloudflare/circl](https://github.com/cloudflare/circl), [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\n\nUpdates `golang.org/x/crypto` from 0.44.0 to 0.45.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang/crypto/compare/v0.44.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.6.1 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.6.1 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.6.1...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.8 to 0.5.10\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/b0e6b5a2af126053b434443f09f8b9678a31f02c\"\u003e\u003ccode\u003eb0e6b5a\u003c/code\u003e\u003c/a\u003e Release v0.5.10\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/51328d47e20687876ec37c882790293197a897cf\"\u003e\u003ccode\u003e51328d4\u003c/code\u003e\u003c/a\u003e xz: fix bug in readIndexBody\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/d24c4e7c9fd034f2733cfbb9826c4b1d4122b7c6\"\u003e\u003ccode\u003ed24c4e7\u003c/code\u003e\u003c/a\u003e Create codeql-analysis.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/97d4618bded97982c0a1daeae84e54286e32d09c\"\u003e\u003ccode\u003e97d4618\u003c/code\u003e\u003c/a\u003e Release v0.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/6ef4ef7710cc9db770fff7892ffc62aff71678c9\"\u003e\u003ccode\u003e6ef4ef7\u003c/code\u003e\u003c/a\u003e TODO.md: remarks for version v0.5.9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/2f4e3cad0f1665081127c45b58d3114f8f6d1935\"\u003e\u003ccode\u003e2f4e3ca\u003c/code\u003e\u003c/a\u003e SECURITY.md: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f84da4cdfa12a40496c405b145e6216d90bd0e01\"\u003e\u003ccode\u003ef84da4c\u003c/code\u003e\u003c/a\u003e lzma: fix all ctaticcheck issues.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/978b2af59be76dbdb9a2c3611a504b95b875c36d\"\u003e\u003ccode\u003e978b2af\u003c/code\u003e\u003c/a\u003e xz: fix staticcheck warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/b7e51a5ef6574d55e50f5b0422f374b3372d3b67\"\u003e\u003ccode\u003eb7e51a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/ulikunitz/xz/issues/39\"\u003e#39\u003c/a\u003e from ItsMattL/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/d234bb7e48202eb34fbfebee765058469194f13e\"\u003e\u003ccode\u003ed234bb7\u003c/code\u003e\u003c/a\u003e Fix static check error in format.go.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.8...v0.5.10\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.75.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.75.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Hawthorne001/terraform-provider-castai/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Hawthorne001/terraform-provider-castai/pull/104","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Hawthorne001%2Fterraform-provider-castai/issues/104","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/104/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-03-30T17:37:50.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4172739891","node_id":"PR_kwDOOOGRdc7Osrah","number":4,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-03T03:46:40.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-30T17:37:50.000Z","updated_at":"2026-04-03T03:46:42.000Z","time_to_close":295730,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":11,"packages":[{"name":"github.com/anchore/quill","old_version":"0.5.1","new_version":"0.7.1","repository_url":"https://github.com/anchore/quill"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"github.com/buger/jsonparser","old_version":"1.1.1","new_version":"1.1.2","repository_url":"https://github.com/buger/jsonparser"},{"name":"github.com/cloudflare/circl","old_version":"1.3.8","new_version":"1.6.3","repository_url":"https://github.com/cloudflare/circl"},{"name":"github.com/docker/cli","old_version":"27.5.0+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/go-git/go-git/v5","old_version":"5.13.1","new_version":"5.17.1","repository_url":"https://github.com/go-git/go-git"},{"name":"github.com/opencontainers/runc","old_version":"1.1.14","new_version":"1.2.8","repository_url":"https://github.com/opencontainers/runc"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 7 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/anchore/quill](https://github.com/anchore/quill) | `0.5.1` | `0.7.1` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n| [github.com/buger/jsonparser](https://github.com/buger/jsonparser) | `1.1.1` | `1.1.2` |\n| [github.com/cloudflare/circl](https://github.com/cloudflare/circl) | `1.3.8` | `1.6.3` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `27.5.0+incompatible` | `29.2.0+incompatible` |\n| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.13.1` | `5.17.1` |\n| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.14` | `1.2.8` |\n\n\nUpdates `github.com/anchore/quill` from 0.5.1 to 0.7.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/anchore/quill/releases\"\u003egithub.com/anchore/quill's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003ev0.7.1\u003c/h1\u003e\n\u003ch3\u003eSecurity Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not allow for unbounded reads for user controlled input [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/681\"\u003e#681\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAccount for excessive read limits in macho parsing [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/682\"\u003e#682\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eValidate developer log URL requests [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/680\"\u003e#680\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.7.0...v0.7.1\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003ch1\u003ev0.7.0\u003c/h1\u003e\n\u003ch3\u003eAdded Features\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003edry run signing and notarization process before running in production [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/617\"\u003e#617\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/618\"\u003e#618\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTeamID is not set during signing [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/147\"\u003e#147\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/669\"\u003e#669\u003c/a\u003e \u003ca href=\"https://github.com/jflowers\"\u003e\u003ccode\u003e@​jflowers\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdditional Changes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eTypo in install.sh help text [\u003ca href=\"https://redirect.github.com/anchore/quill/issues/546\"\u003e#546\u003c/a\u003e \u003ca href=\"https://redirect.github.com/anchore/quill/pull/549\"\u003e#549\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003emigrate to latest tool ci patterns [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/670\"\u003e#670\u003c/a\u003e \u003ca href=\"https://github.com/spiffcs\"\u003e\u003ccode\u003e@​spiffcs\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate golang to v1.26 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/668\"\u003e#668\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003edoc: Add llms.txt for the 🤖 🕷️ [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/592\"\u003e#592\u003c/a\u003e \u003ca href=\"https://github.com/popey\"\u003e\u003ccode\u003e@​popey\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eUpdate dependencies [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/627\"\u003e#627\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eAdd periodic workflow to update certs [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/608\"\u003e#608\u003c/a\u003e \u003ca href=\"https://github.com/wagoodman\"\u003e\u003ccode\u003e@​wagoodman\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003elint gh actions with zizmor [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/581\"\u003e#581\u003c/a\u003e \u003ca href=\"https://github.com/willmurphyscode\"\u003e\u003ccode\u003e@​willmurphyscode\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate to go 1.24.x [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/543\"\u003e#543\u003c/a\u003e \u003ca href=\"https://github.com/westonsteimel\"\u003e\u003ccode\u003e@​westonsteimel\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003cli\u003eupdate runners to ubuntu-24.04 [\u003ca href=\"https://redirect.github.com/anchore/quill/pull/541\"\u003e#541\u003c/a\u003e \u003ca href=\"https://github.com/kzantow\"\u003e\u003ccode\u003e@​kzantow\u003c/code\u003e\u003c/a\u003e]\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003e\u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.0\"\u003e(Full Changelog)\u003c/a\u003e\u003c/strong\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/9cdb0823ea1d2c45dcc11557f8c5cd7291c75d29\"\u003e\u003ccode\u003e9cdb082\u003c/code\u003e\u003c/a\u003e do not allow for unbounded reads for user controlled input (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/681\"\u003e#681\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/80cf3fe082678af0ec4f9f8dd93f39189d2dc1fe\"\u003e\u003ccode\u003e80cf3fe\u003c/code\u003e\u003c/a\u003e account for excessive read limits in macho parsing code (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/682\"\u003e#682\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/e41d66a517c2dc20ad8e9fbccffbdc6ba5ef0020\"\u003e\u003ccode\u003ee41d66a\u003c/code\u003e\u003c/a\u003e validate developer log URL requests (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/680\"\u003e#680\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/899202c7eace3de7b3f4f7461bdfd1c4c38701db\"\u003e\u003ccode\u003e899202c\u003c/code\u003e\u003c/a\u003e update cred var values for p12 in release (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/679\"\u003e#679\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/c73a37bd3b655633c1bd5466c2b2f65b2ae4032c\"\u003e\u003ccode\u003ec73a37b\u003c/code\u003e\u003c/a\u003e remove goreleaser config for release step + update tool refs (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/678\"\u003e#678\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/95e119c6cb513a69f6b45d3e86a9fbcb2c77b669\"\u003e\u003ccode\u003e95e119c\u003c/code\u003e\u003c/a\u003e persist credentials for git (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/677\"\u003e#677\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/02e765ab563811d7a3f0ede8df36977da92e8779\"\u003e\u003ccode\u003e02e765a\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/aws/aws-sdk-go-v2/config (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/663\"\u003e#663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/530bb7f3ddf667d262891b79fb15c0147d81cf11\"\u003e\u003ccode\u003e530bb7f\u003c/code\u003e\u003c/a\u003e add test notarize command (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/618\"\u003e#618\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/3e8269c31055b1878a34c1954347254a42b37452\"\u003e\u003ccode\u003e3e8269c\u003c/code\u003e\u003c/a\u003e Set team ID during signing (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/675\"\u003e#675\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/anchore/quill/commit/12b3e8eb4c06d7582da9725fad3bc7c268872752\"\u003e\u003ccode\u003e12b3e8e\u003c/code\u003e\u003c/a\u003e chore(deps): bump github.com/blacktop/go-macho from 1.1.259 to 1.1.263 (\u003ca href=\"https://redirect.github.com/anchore/quill/issues/661\"\u003e#661\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/anchore/quill/compare/v0.5.1...v0.7.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.46.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/19acf81bd7bc7b558d18a550e8e023df2c33e742\"\u003e\u003ccode\u003e19acf81\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3a1c6b4b61966d06b6469ad7bc15839ba76eeb89\"\u003e\u003ccode\u003e3a1c6b4\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f4602e40409257658159002a9af6aedb875949fb\"\u003e\u003ccode\u003ef4602e4\u003c/code\u003e\u003c/a\u003e ssh/agent: fix flaky test by ensuring a writeable home directory\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.46.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/buger/jsonparser` from 1.1.1 to 1.1.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/buger/jsonparser/releases\"\u003egithub.com/buger/jsonparser's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eUpdated travis to build for 1.13 to 1.15 by \u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\n\u003cul\u003e\n\u003cli\u003eeliminate 2 allocations in EachKey() by \u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003efix issue \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/150\"\u003e#150\u003c/a\u003e (in deleting case) by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efixing the oss-fuzz issue by \u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/227\"\u003ebuger/jsonparser#227\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix parseInt overflow check false negative by \u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded bespoke error for null cases by \u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFuzzing: Add CIFuzz by \u003ca href=\"https://github.com/AdamKorcz\"\u003e\u003ccode\u003e@​AdamKorcz\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/239\"\u003ebuger/jsonparser#239\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdded latest versions of go to tests by \u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix EachKey pIdxFlags allocation by \u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: prevent panic on negative slice index in Delete with malformed JSON (GO-2026-4514) by \u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/janreggie\"\u003e\u003ccode\u003e@​janreggie\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/225\"\u003ebuger/jsonparser#225\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Villenny\"\u003e\u003ccode\u003e@​Villenny\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/223\"\u003ebuger/jsonparser#223\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/daria-kay\"\u003e\u003ccode\u003e@​daria-kay\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/226\"\u003ebuger/jsonparser#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/carsonip\"\u003e\u003ccode\u003e@​carsonip\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/231\"\u003ebuger/jsonparser#231\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jonomacd\"\u003e\u003ccode\u003e@​jonomacd\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/228\"\u003ebuger/jsonparser#228\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moredure\"\u003e\u003ccode\u003e@​moredure\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/244\"\u003ebuger/jsonparser#244\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/unxcepted\"\u003e\u003ccode\u003e@​unxcepted\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/241\"\u003ebuger/jsonparser#241\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dbarrosop\"\u003e\u003ccode\u003e@​dbarrosop\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/buger/jsonparser/pull/276\"\u003ebuger/jsonparser#276\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a69e7e01cd4ad67bdfd3ac2c080b9212af16f4b0\"\u003e\u003ccode\u003ea69e7e0\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/276\"\u003e#276\u003c/a\u003e from dbarrosop/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/d3eacc0bab779d6cf98221f5268828fff287876e\"\u003e\u003ccode\u003ed3eacc0\u003c/code\u003e\u003c/a\u003e fix: prevent panic on negative slice index in Delete with malformed JSON (GO-...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/61b32cfdfa0f5d368ef7c7daef28ce12d538740f\"\u003e\u003ccode\u003e61b32cf\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/241\"\u003e#241\u003c/a\u003e from unxcepted/master\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2181e8398f18397c9cacbaea9889314bb585e868\"\u003e\u003ccode\u003e2181e83\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/244\"\u003e#244\u003c/a\u003e from ScaleChamp/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/1510b5194182fc2fb898f28cdbceb42fd7258bfa\"\u003e\u003ccode\u003e1510b51\u003c/code\u003e\u003c/a\u003e Added latest versions of go to tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/6fc2e488ed3cc4f1f1debec3b0c70715bd7be6fd\"\u003e\u003ccode\u003e6fc2e48\u003c/code\u003e\u003c/a\u003e fix: eachkey allocation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/a6f867eb7787e4ec54536b77b5d628ddf5c4f73d\"\u003e\u003ccode\u003ea6f867e\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/239\"\u003e#239\u003c/a\u003e from AdamKorcz/cifuzz1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/cbc01fdbbe131706e89eeaaf0cd917760d8d3949\"\u003e\u003ccode\u003ecbc01fd\u003c/code\u003e\u003c/a\u003e Fuzzing: Add CIFuzz\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/dc92d6932a1272b4d8f485f798a88c3a75106256\"\u003e\u003ccode\u003edc92d69\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/228\"\u003e#228\u003c/a\u003e from jonomacd/null-handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/buger/jsonparser/commit/2d9d6343e8621ddc18c70749663f74bc584c0de4\"\u003e\u003ccode\u003e2d9d634\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/buger/jsonparser/issues/231\"\u003e#231\u003c/a\u003e from carsonip/fix-parseint-overflow-check\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/buger/jsonparser/compare/v1.1.1...v1.1.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cloudflare/circl` from 1.3.8 to 1.6.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cloudflare/circl/releases\"\u003egithub.com/cloudflare/circl's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCIRCL v1.6.3\u003c/h2\u003e\n\u003cp\u003eFix a bug on ecc/p384 scalar multiplication.\u003c/p\u003e\n\u003ch3\u003eWhat's Changed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003esign/mldsa: Check opts for nil value  by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/582\"\u003ecloudflare/circl#582\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eecc/p384: Point addition must handle point doubling case. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/583\"\u003ecloudflare/circl#583\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease CIRCL v1.6.3 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/584\"\u003ecloudflare/circl#584\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.2...v1.6.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.2\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eNew SLH-DSA, improvements in ML-DSA for arm64.\u003c/li\u003e\n\u003cli\u003eTested compilation on WASM.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eOptimize pairing product computation by moving exponentiations to G1. by \u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003esign: Adding SLH-DSA signature by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/512\"\u003ecloudflare/circl#512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate code generators to CIRCL v1.6.1. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/548\"\u003ecloudflare/circl#548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eML-DSA: Add preliminary Wycheproof test vectors by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/552\"\u003ecloudflare/circl#552\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ego fmt by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/554\"\u003ecloudflare/circl#554\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egz-compressing test vectors, use of HexBytes and ReadGzip functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/555\"\u003ecloudflare/circl#555\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Removes use of elliptic Marshal and Unmarshal functions. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/556\"\u003ecloudflare/circl#556\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport encoding/decoding ML-DSA private keys (as long as they contain seeds) by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/559\"\u003ecloudflare/circl#559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate to golangci-lint v2 by \u003ca href=\"https://github.com/bwesterb\"\u003e\u003ccode\u003e@​bwesterb\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/560\"\u003ecloudflare/circl#560\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePreparation for ARM64 Implementation of poly operations for dilithium package. by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eprepare power2Round for custom implementations in assembly by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/564\"\u003ecloudflare/circl#564\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eARM64 implementation for poly.PackLe16 by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/563\"\u003ecloudflare/circl#563\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polyMulBy2toD by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/565\"\u003ecloudflare/circl#565\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of polySub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/566\"\u003ecloudflare/circl#566\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: add byteLen method for short groups and RandomScalar uses rand.Int by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/568\"\u003ecloudflare/circl#568\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd arm64 version of poly.Add/Sub by \u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/572\"\u003ecloudflare/circl#572\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egroup: Adding cryptobyte marshaling to scalars by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/569\"\u003ecloudflare/circl#569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBumping up to Go1.25 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/574\"\u003ecloudflare/circl#574\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: Including WASM compilation. by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/577\"\u003ecloudflare/circl#577\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRevert to using package-declared HPKE errors for shortkem instead of standard library errors by \u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRelease v1.6.2 by \u003ca href=\"https://github.com/armfazh\"\u003e\u003ccode\u003e@​armfazh\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/579\"\u003ecloudflare/circl#579\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dfaranha\"\u003e\u003ccode\u003e@​dfaranha\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/547\"\u003ecloudflare/circl#547\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/elementrics\"\u003e\u003ccode\u003e@​elementrics\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/562\"\u003ecloudflare/circl#562\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/harshiniwho\"\u003e\u003ccode\u003e@​harshiniwho\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/cloudflare/circl/pull/578\"\u003ecloudflare/circl#578\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\"\u003ehttps://github.com/cloudflare/circl/compare/v1.6.1...v1.6.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eCIRCL v1.6.1\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixes some point checks on the FourQ curve.\u003c/li\u003e\n\u003cli\u003eHybrid KEM fails on low-order points.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/24ae53c5d6f7fe18203adc125ba3ed76a38703e1\"\u003e\u003ccode\u003e24ae53c\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/581020bd4a836b8ce7bd4e414ba2884c07dbc906\"\u003e\u003ccode\u003e581020b\u003c/code\u003e\u003c/a\u003e Rename method to oddMultiplesProjective.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/12209a4566605692a8402594e367a5aed5148460\"\u003e\u003ccode\u003e12209a4\u003c/code\u003e\u003c/a\u003e Removing unused cmov for jacobian points.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/fcba359f4178645d2c9e50f29ab6966337da4b95\"\u003e\u003ccode\u003efcba359\u003c/code\u003e\u003c/a\u003e ecc/p384: use of complete projective formulas for scalar multiplication.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/5e1bae8d8c2df4e717c2c5c2d5b5d60b629b2ac6\"\u003e\u003ccode\u003e5e1bae8\u003c/code\u003e\u003c/a\u003e ecc/p384: handle point doubling in point addition with Jacobian coordinates.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/341604685ff97e8f7440ae4b4711ba1c118c648c\"\u003e\u003ccode\u003e3416046\u003c/code\u003e\u003c/a\u003e Check opts for nil value.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/a763d47a6dce43d1f4f7b697d1d7810463a526f6\"\u003e\u003ccode\u003ea763d47\u003c/code\u003e\u003c/a\u003e Release CIRCL v1.6.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3c70bf9ad53b681fbe5ba6067e454a86549fee8a\"\u003e\u003ccode\u003e3c70bf9\u003c/code\u003e\u003c/a\u003e Bump x/crypto x/sys dependencies.\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/3f0f15b2bfe67bad81a35e8aec81ae42ca78349d\"\u003e\u003ccode\u003e3f0f15b\u003c/code\u003e\u003c/a\u003e Revert to using package-declared HPKE errors for shortkem instead of standard...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cloudflare/circl/commit/23491bd573cf29b6f567057a158203a2c9dfa30d\"\u003e\u003ccode\u003e23491bd\u003c/code\u003e\u003c/a\u003e Adding generic Power2Round method.\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cloudflare/circl/compare/v1.3.8...v1.6.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 27.5.0+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v27.5.0...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-git/go-git/v5` from 5.13.1 to 5.17.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-git/go-git/releases\"\u003egithub.com/go-git/go-git/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.17.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1930\"\u003ego-git/go-git#1930\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/index, Improve v4 entry name validation by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1935\"\u003ego-git/go-git#1935\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] plumbing: format/idxfile, Fix version and fanout checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1937\"\u003ego-git/go-git#1937\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\"\u003ehttps://github.com/go-git/go-git/compare/v5.17.0...v5.17.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.17.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1839\"\u003ego-git/go-git#1839\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: worktree, optimize infiles function for very large repos by \u003ca href=\"https://github.com/k-anshul\"\u003e\u003ccode\u003e@​k-anshul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1853\"\u003ego-git/go-git#1853\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003egit: Add strict checks for supported extensions by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1861\"\u003ego-git/go-git#1861\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebackport, git: Improve Status() speed with new index.ModTime check by \u003ca href=\"https://github.com/cedric-appdirect\"\u003e\u003ccode\u003e@​cedric-appdirect\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1862\"\u003ego-git/go-git#1862\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003estorage: filesystem, Avoid overwriting loose obj files by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1864\"\u003ego-git/go-git#1864\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.5...v5.17.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.5\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild: Update module golang.org/x/crypto to v0.45.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1744\"\u003ego-git/go-git#1744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Bump Go test versions to 1.23-1.25 (v5) by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1746\"\u003ego-git/go-git#1746\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[v5] git: worktree, Don't delete local untracked files when resetting worktree by \u003ca href=\"https://github.com/Ch00k\"\u003e\u003ccode\u003e@​Ch00k\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1800\"\u003ego-git/go-git#1800\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExpand packfile checks by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1836\"\u003ego-git/go-git#1836\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.4...v5.16.5\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.4\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebackport plumbing: format/idxfile, prevent panic by \u003ca href=\"https://github.com/swills\"\u003e\u003ccode\u003e@​swills\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1732\"\u003ego-git/go-git#1732\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[backport] build: test, Fix build on Windows. by \u003ca href=\"https://github.com/pjbgf\"\u003e\u003ccode\u003e@​pjbgf\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1734\"\u003ego-git/go-git#1734\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module golang.org/x/net to v0.38.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1742\"\u003ego-git/go-git#1742\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/cloudflare/circl to v1.6.1 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1741\"\u003ego-git/go-git#1741\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: Update module github.com/go-git/go-git/v5 to v5.13.0 [SECURITY] (releases/v5.x) by \u003ca href=\"https://github.com/go-git-renovate\"\u003e\u003ccode\u003e@​go-git-renovate\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1743\"\u003ego-git/go-git#1743\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.3...v5.16.4\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev5.16.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003einternal: Expand regex to fix build [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1644\"\u003ego-git/go-git#1644\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: raise timeouts for windows CI tests and disable CIFuzz [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1646\"\u003ego-git/go-git#1646\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eplumbing: support commits extra headers, support jujutsu signed commit [5.x] by \u003ca href=\"https://github.com/baloo\"\u003e\u003ccode\u003e@​baloo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-git/go-git/pull/1633\"\u003ego-git/go-git#1633\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\"\u003ehttps://github.com/go-git/go-git/compare/v5.16.2...v5.16.3\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5e23dfd02db92644dc4a3358ceb297fce875b772\"\u003e\u003ccode\u003e5e23dfd\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1937\"\u003e#1937\u003c/a\u003e from pjbgf/idx-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/6b38a326816b80f64c20cc0e6113958b65c05a1c\"\u003e\u003ccode\u003e6b38a32\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1935\"\u003e#1935\u003c/a\u003e from pjbgf/index-v5\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/cd757fcb856a2dcc5fff6c110320a8ff62e99513\"\u003e\u003ccode\u003ecd757fc\u003c/code\u003e\u003c/a\u003e plumbing: format/idxfile, Fix version and fanout checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/3ec0d70cb687ae1da5f4d18faa4229bd971a8710\"\u003e\u003ccode\u003e3ec0d70\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Fix tree extension invalidated entry parsing\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/dbe10b6b425a2a4ea92a9d98e20cd68e15aede01\"\u003e\u003ccode\u003edbe10b6\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/e9b65df44cb97faeba148b47523a362beaecddf9\"\u003e\u003ccode\u003ee9b65df\u003c/code\u003e\u003c/a\u003e plumbing: format/index, Improve v4 entry name validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/adad18daabddee04c5a889f0230035e74bca32c0\"\u003e\u003ccode\u003eadad18d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1930\"\u003e#1930\u003c/a\u003e from go-git/renovate/releases/v5.x-go-github.com-clo...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/29470bd1d862c6e902996b8e8ff8eb7a0515a9be\"\u003e\u003ccode\u003e29470bd\u003c/code\u003e\u003c/a\u003e build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/bdf06885bdaa3631cf6a2017108086c6f53dcf69\"\u003e\u003ccode\u003ebdf0688\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/1864\"\u003e#1864\u003c/a\u003e from pjbgf/v5-issue-55\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-git/go-git/commit/5290e521c8cf651bf3e8d3e37f517c7cf7aa0b19\"\u003e\u003ccode\u003e5290e52\u003c/code\u003e\u003c/a\u003e storage: filesystem, Avoid overwriting loose obj files. Fixes \u003ca href=\"https://redirect.github.com/go-git/go-git/issues/55\"\u003e#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-git/go-git/compare/v5.13.1...v5.17.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.0.0 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.0.0...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/runc` from 1.1.14 to 1.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/releases\"\u003egithub.com/opencontainers/runc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003erunc v1.2.8 -- \u0026quot;鳥籠の中に囚われた屈辱を\u0026quot;\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nSome vendors were given a pre-release version of this release.\nThis public release includes two extra patches to fix regressions\ndiscovered very late during the embargo period and were thus not\nincluded in the pre-release versions. Please update to this version.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains fixes for three high-severity security\nvulnerabilities in runc (\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e, and\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e). All three vulnerabilities ultimately allow (through\ndifferent methods) for full container breakouts by bypassing runc's\nrestrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e is a more sophisticated variant of \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e,\nwhich was a flaw that allowed an attacker to trick runc into writing the LSM\nprocess labels for a container process into a dummy tmpfs file and thus not\napply the correct LSM labels to the container process. The mitigation we\napplied for \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e was fairly limited and effectively only caused\nrunc to verify that when we write LSM labels that those labels are actual\nprocfs files. This issue affects all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eStatic Linking Notices\u003c/h3\u003e\n\u003cp\u003eThe \u003ccode\u003erunc\u003c/code\u003e binary distributed with this release are \u003cem\u003estatically linked\u003c/em\u003e with\nthe following \u003ca href=\"https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html\"\u003eGNU LGPL-2.1\u003c/a\u003e licensed libraries, with \u003ccode\u003erunc\u003c/code\u003e acting\nas a \u0026quot;work that uses the Library\u0026quot;:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seccomp/libseccomp\"\u003elibseccomp\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/blob/main/CHANGELOG.md\"\u003egithub.com/opencontainers/runc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.2.8] - 2025-11-05\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e鳥籠の中に囚われた屈辱を\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003eThis release includes fixes for the following high-severity security issues:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e is a more sophisticated variant of \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e,\nwhich was a flaw that allowed an attacker to trick runc into writing the LSM\nprocess labels for a container process into a dummy tmpfs file and thus not\napply the correct LSM labels to the container process. The mitigation we\napplied for \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e was fairly limited and effectively only caused\nrunc to verify that when we write LSM labels that those labels are actual\nprocfs files. This issue affects all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.4.0-rc.2] - 2025-10-10\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e私の役目は信じるかどうかではない。行うかどうかだ。\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003elibcontainer API\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe deprecated \u003ccode\u003elibcontainer/userns\u003c/code\u003e package has been removed; use\n\u003ccode\u003egithub.com/moby/sys/userns\u003c/code\u003e instead. (\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4910\"\u003e#4910\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4911\"\u003e#4911\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAllow setting \u003ccode\u003euser.*\u003c/code\u003e sysctls for user-namespaced containers, as they are\nnamespaced and thus safe to configure. (\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4889\"\u003e#4889\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4892\"\u003e#4892\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for using \u003ccode\u003eclone3(2)\u003c/code\u003e's \u003ccode\u003eCLONE_INTO_CGROUP\u003c/code\u003e flag when\nconfiguring the \u003ccode\u003erunc exec\u003c/code\u003e process. This also included some internal\nchanges to how we add processes to containers. (\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4822\"\u003e#4822\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4812\"\u003e#4812\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4920\"\u003e#4920\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd support for configuring the NUMA pmemory policy for a container with\n\u003ccode\u003eset_mempolicy(2)\u003c/code\u003e\u003ccode\u003eopencontainers/runtime-spec#1282\u003c/code\u003e\u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4726\"\u003e#4726\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4915\"\u003e#4915\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/eeb7e6024f9ee43876301b1d23c353384fa6dcdd\"\u003e\u003ccode\u003eeeb7e60\u003c/code\u003e\u003c/a\u003e VERSION: release v1.2.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/cdee962c391af84a922252c283bd065e5cabb34b\"\u003e\u003ccode\u003ecdee962\u003c/code\u003e\u003c/a\u003e merge private security patches into ghsa-release-1.2.8\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/b4cb2f5436a1110a1de4eec7335a791d2b30a868\"\u003e\u003ccode\u003eb4cb2f5\u003c/code\u003e\u003c/a\u003e rootfs: re-allow dangling symlinks in mount targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/ee56b8571cc81d41f85b069671bb6d33fd235cf1\"\u003e\u003ccode\u003eee56b85\u003c/code\u003e\u003c/a\u003e openat2: improve resilience on busy systems\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/2462b68fa2d6618480e6a4f615661ee6e762d13a\"\u003e\u003ccode\u003e2462b68\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/opencontainers/runc/issues/4943\"\u003e#4943\u003c/a\u003e from lifubang/backport-1.2-4934-4937\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/99e41a58f7a51cf1b6caa5bed58ffbe615193523\"\u003e\u003ccode\u003e99e41a5\u003c/code\u003e\u003c/a\u003e ci: only run lint-extra job on PRs to main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/f2a1c986629e82cffb3b7c01eee68405894f4783\"\u003e\u003ccode\u003ef2a1c98\u003c/code\u003e\u003c/a\u003e CI: remove deprecated lima-vm/lima-actions/ssh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/8f901856f96126285585e7343d7bc600013798fc\"\u003e\u003ccode\u003e8f90185\u003c/code\u003e\u003c/a\u003e selinux: use safe procfs API for labels\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/948d6e9dbece33da25886f18c97a128c347e95ff\"\u003e\u003ccode\u003e948d6e9\u003c/code\u003e\u003c/a\u003e rootfs: switch to fd-based handling of mountpoint targets\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/opencontainers/runc/commit/7aa42ade85d575294cf778b21edbd53c0171a3d4\"\u003e\u003ccode\u003e7aa42ad\u003c/code\u003e\u003c/a\u003e libct: align param type for mountCgroupV1/V2 functions\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/opencontainers/runc/compare/v1.1.14...v1.2.8\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.33.0 to 1.35.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.35.0/0.57.0/0.11.0] 2025-03-05\u003c/h2\u003e\n\u003cp\u003eThis release is the last to support [Go 1.22].\nThe next release will require at least [Go 1.23].\u003c/p\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eValueFromAttribute\u003c/code\u003e and \u003ccode\u003eKeyValueFromAttribute\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6180\"\u003e#6180\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e and \u003ccode\u003eSetEventName\u003c/code\u003e to \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6187\"\u003e#6187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e to \u003ccode\u003eRecordFactory\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log/logtest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6187\"\u003e#6187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eAssertRecordEqual\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/log/logtest\u003c/code\u003e checks \u003ccode\u003eRecord.EventName\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6187\"\u003e#6187\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e and \u003ccode\u003eSetEventName\u003c/code\u003e to \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6193\"\u003e#6193\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEventName\u003c/code\u003e to \u003ccode\u003eRecordFactory\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log/logtest\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6193\"\u003e#6193\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEmit \u003ccode\u003eRecord.EventName\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6211\"\u003e#6211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEmit \u003ccode\u003eRecord.EventName\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploghttp\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6211\"\u003e#6211\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEmit \u003ccode\u003eRecord.EventName\u003c/code\u003e field in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutlog\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6210\"\u003e#6210\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.28.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.28.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.28.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.27.0\u003c/code\u003e(\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6236\"\u003e#6236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.30.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.30.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.30.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.28.0\u003c/code\u003e(\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6240\"\u003e#6240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDocument the pitfalls of using \u003ccode\u003eResource\u003c/code\u003e as a comparable type.\n\u003ccode\u003eResource.Equal\u003c/code\u003e and \u003ccode\u003eResource.Equivalent\u003c/code\u003e should be used instead. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6272\"\u003e#6272\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSupport [Go 1.24]. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6304\"\u003e#6304\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eFilterProcessor\u003c/code\u003e and \u003ccode\u003eEnabledParameters\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e.\nIt replaces \u003ccode\u003ego.opentelemetry.io/otel/sdk/log/internal/x.FilterProcessor\u003c/code\u003e.\nCompared to previous version it additionally gives the possibility to filter by resource and instrumentation scope. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6317\"\u003e#6317\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate \u003ccode\u003egithub.com/prometheus/common\u003c/code\u003e to \u003ccode\u003ev0.62.0\u003c/code\u003e, which changes the \u003ccode\u003eNameValidationScheme\u003c/code\u003e to \u003ccode\u003eNoEscaping\u003c/code\u003e.\nThis allows metrics names to keep original delimiters (e.g. \u003ccode\u003e.\u003c/code\u003e), rather than replacing with underscores.\nThis is controlled by the \u003ccode\u003eContent-Type\u003c/code\u003e header, or can be reverted by setting \u003ccode\u003eNameValidationScheme\u003c/code\u003e to \u003ccode\u003eLegacyValidation\u003c/code\u003e in \u003ccode\u003egithub.com/prometheus/common/model\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6198\"\u003e#6198\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eEliminate goroutine leak for the processor returned by \u003ccode\u003eNewSimpleSpanProcessor\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e when \u003ccode\u003eShutdown\u003c/code\u003e is called and the passed \u003ccode\u003ectx\u003c/code\u003e is canceled and \u003ccode\u003eSpanExporter.Shutdown\u003c/code\u003e has not returned. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6368\"\u003e#6368\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eEliminate goroutine leak for the processor returned by \u003ccode\u003eNewBatchSpanProcessor\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e when \u003ccode\u003eForceFlush\u003c/code\u003e is called and the passed \u003ccode\u003ectx\u003c/code\u003e is canceled and \u003ccode\u003eSpanExporter.Export\u003c/code\u003e has not returned. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6369\"\u003e#6369\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.34.0/0.56.0/0.10.0] 2025-01-17\u003c/h2\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRemove the notices from \u003ccode\u003eLogger\u003c/code\u003e to make the whole Logs API user-facing in \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6167\"\u003e#6167\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eRelax minimum Go version to 1.22.0 in various modules. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6073\"\u003e#6073\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eType\u003c/code\u003e name logged for the \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e client is corrected from \u003ccode\u003eotlphttpgrpc\u003c/code\u003e to \u003ccode\u003eotlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6143\"\u003e#6143\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/5ba5e7a449f36c1c02710bbaa517263797046db0\"\u003e\u003ccode\u003e5ba5e7a\u003c/code\u003e\u003c/a\u003e Release v1.35.0/v0.57.0/v0.11.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6407\"\u003e#6407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3908b67340a7d9ee5c475cc5683535bc5da51ed8\"\u003e\u003ccode\u003e3908b67\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/securego/gosec/v2 to v2.22.2 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6412\"\u003e#6412\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/50172b1934dac5afd1527939a771b1e954624bea\"\u003e\u003ccode\u003e50172b1\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/ryancurrah/gomodguard to v1.4.1 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6411\"\u003e#6411\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/cea6d2b039590d9a489ab836e0609cc9d7645148\"\u003e\u003ccode\u003ecea6d2b\u003c/code\u003e\u003c/a\u003e fix(deps): update module google.golang.org/grpc to v1.71.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6409\"\u003e#6409\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/e2aee3aff8abf61e7a8794b4d55e179ef1ed717c\"\u003e\u003ccode\u003ee2aee3a\u003c/code\u003e\u003c/a\u003e Move trace sdk tests from trace_test into trace package (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6400\"\u003e#6400\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/38f4f39284a2e7ff3b09b9afa47657a41e4af591\"\u003e\u003ccode\u003e38f4f39\u003c/code\u003e\u003c/a\u003e fix(deps): update build-tools to v0.20.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/6403\"\u003e#6403\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/2911449bab33757c10bb32096bd76b946315a988\"\u003e\u003ccode\u003e2911449\u003c/code\u003e\u003c/a\u003e Look at stale issues in ascending...\n\n_Description has been truncated_","html_url":"https://github.com/lbeckman314/goreleaser/pull/4","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/lbeckman314%2Fgoreleaser/issues/4","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/4/packages"}},{"old_version":"0.5.11","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-03-27T14:33:32.000Z","version_change":"0.5.11 → 0.5.14","issue":{"uuid":"4153251037","node_id":"PR_kwDOKNdi0s7OEcPZ","number":1,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 13 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-04-08T02:42:43.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-27T14:33:32.000Z","updated_at":"2026-04-08T02:42:44.000Z","time_to_close":994151,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":13,"packages":[{"name":"cosmossdk.io/math","old_version":"1.1.2","new_version":"1.4.0","repository_url":"https://github.com/cosmos/cosmos-sdk"},{"name":"github.com/cometbft/cometbft","old_version":"0.38.0","new_version":"0.38.21","repository_url":"https://github.com/cometbft/cometbft"},{"name":"github.com/cosmos/cosmos-sdk","old_version":"0.50.0-rc.0","new_version":"0.50.14","repository_url":"https://github.com/cosmos/cosmos-sdk"},{"name":"filippo.io/edwards25519","old_version":"1.0.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.1","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 6 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.1.2` | `1.4.0` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `0.38.0` | `0.38.21` |\n| [github.com/cosmos/cosmos-sdk](https://github.com/cosmos/cosmos-sdk) | `0.50.0-rc.0` | `0.50.14` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.0.0` | `1.1.1` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.1` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.11` | `0.5.14` |\n\n\nUpdates `cosmossdk.io/math` from 1.1.2 to 1.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases\"\u003ecosmossdk.io/math's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eCosmovisor v1.3.0\u003c/h2\u003e\n\u003ch1\u003eRelease Notes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eFix failure when installing cosmovisor via \u003ccode\u003ego install\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cp\u003eFor more details, please see the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/cosmovisor/v1.3.0/cosmovisor/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003eCosmovisor v1.2.0\u003c/h2\u003e\n\u003ch2\u003eRelease Notes\u003c/h2\u003e\n\u003ch3\u003eNew Features\u003c/h3\u003e\n\u003cp\u003eWith the \u003ccode\u003ecosmovisor init\u003c/code\u003e command, all the necessary folders for using cosmovisor are automatically created. You do not need to manually symlink the chain binary anymore.\u003c/p\u003e\n\u003cp\u003eWe've added a new configuration option: \u003ccode\u003eDAEMON_RESTART_DELAY\u003c/code\u003e (as env variable). When set, Cosmovisor will wait that delay between the node halt and backup. See the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/main/cosmovisor/README.md#command-line-arguments-and-environment-variables\"\u003eREADME\u003c/a\u003e file for more details.\u003c/p\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix Cosmovisor binary usage for pre-upgrade. Cosmovisor was using the wrong binary when running a \u003ccode\u003epre-upgrade\u003c/code\u003e command.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChangelog\u003c/h3\u003e\n\u003cp\u003eFor more details, please see the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/cosmovisor/v1.1.0/cosmovisor/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e.\u003c/p\u003e\n\u003ch2\u003ecollections/v1.2.0\u003c/h2\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/24081\"\u003e#24081\u003c/a\u003e Remove \u003ccode\u003ecosmossdk.io/core\u003c/code\u003e dependency.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/6b4557ddb8d865a68381a1b059ea9d5666e28710\"\u003e\u003ccode\u003e6b4557d\u003c/code\u003e\u003c/a\u003e chore: prepare log v1.4.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21197\"\u003e#21197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5a08833386eb358151038c0bc113124b57192269\"\u003e\u003ccode\u003e5a08833\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21189\"\u003e#21189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/655b30367576edae1afacfc95d99bd2f3d98a447\"\u003e\u003ccode\u003e655b303\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21190\"\u003e#21190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/cc25f59e6198a4acca5d120a86b34c561b476b45\"\u003e\u003ccode\u003ecc25f59\u003c/code\u003e\u003c/a\u003e ci: add compat check 052 x main (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21174\"\u003e#21174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5b7d8b6d82d4d5a50bdb37d8369600f5ef491b9b\"\u003e\u003ccode\u003e5b7d8b6\u003c/code\u003e\u003c/a\u003e test(stf/mock): Unmarshal with knowing the message type (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21178\"\u003e#21178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/641f9646510e5567a4a6b0011b44ac9eef6ab073\"\u003e\u003ccode\u003e641f964\u003c/code\u003e\u003c/a\u003e ci: attempt to fix goreleaser (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21194\"\u003e#21194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/a0fdab27b2425d5cb28b4fafa898e79e2acc4837\"\u003e\u003ccode\u003ea0fdab2\u003c/code\u003e\u003c/a\u003e test(server/v2): Update testdata prune options (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21192\"\u003e#21192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/4b4ec478dfd26edf3ddc906c757cea1cc8dac68f\"\u003e\u003ccode\u003e4b4ec47\u003c/code\u003e\u003c/a\u003e build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21191\"\u003e#21191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/feb0e077a953f5982c0a64743f849ae257223baa\"\u003e\u003ccode\u003efeb0e07\u003c/code\u003e\u003c/a\u003e feat: [ADR-071] Cryptography v2 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/18824\"\u003e#18824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/111a99995ea9d9732ffd66ac1cf4a214c77d3d8e\"\u003e\u003ccode\u003e111a999\u003c/code\u003e\u003c/a\u003e docs: rename v2 to di (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21181\"\u003e#21181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/math/v1.1.2...log/v1.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 0.38.0 to 0.38.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.38.21\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(statesync): add max snapshot chunks configuration (v0.38.x) by \u003ca href=\"https://github.com/mattac21\"\u003e\u003ccode\u003e@​mattac21\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5548\"\u003ecometbft/cometbft#5548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5581\"\u003ecometbft/cometbft#5581\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.20\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate NOTICE (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5495\"\u003e#5495\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5496\"\u003ecometbft/cometbft#5496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add voting power validation (v0.38.x) by \u003ca href=\"https://github.com/technicallyty\"\u003e\u003ccode\u003e@​technicallyty\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5520\"\u003ecometbft/cometbft#5520\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.19\u003c/h2\u003e\n\u003cp\u003eThis is a security patch release to the CometBFT \u003ccode\u003ev0.38.x\u003c/code\u003e family that fixes \u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-hrhf-2vcr-ghch\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: fix test docker image by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5299\"\u003ecometbft/cometbft#5299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: refactor changelogs by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5303\"\u003ecometbft/cometbft#5303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update and fix mockery tooling on v0.38 by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5301\"\u003ecometbft/cometbft#5301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix the linter by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5304\"\u003ecometbft/cometbft#5304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(store):  Properly prune extended commits (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5276\"\u003e#5276\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5313\"\u003ecometbft/cometbft#5313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: clean up the repo by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5315\"\u003ecometbft/cometbft#5315\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove exposed dockertest port to unblock postgres test by \u003ca href=\"https://github.com/almk-dev\"\u003e\u003ccode\u003e@​almk-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5325\"\u003ecometbft/cometbft#5325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(consensus/reactor): reject oversized proposals (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5324\"\u003e#5324\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5407\"\u003ecometbft/cometbft#5407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/be5677c3e58f998b7f67bb6186dd2c9b81a041a1\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.18\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: remove redundant error check for PubKeyToProto by \u003ca href=\"https://github.com/islishude\"\u003e\u003ccode\u003e@​islishude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4917\"\u003ecometbft/cometbft#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove govulncheck (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4946\"\u003e#4946\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4961\"\u003ecometbft/cometbft#4961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4936\"\u003ecometbft/cometbft#4936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ci): Fix docker builds (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4949\"\u003e#4949\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4963\"\u003ecometbft/cometbft#4963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4972\"\u003ecometbft/cometbft#4972\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5008\"\u003ecometbft/cometbft#5008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5009\"\u003ecometbft/cometbft#5009\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4990\"\u003ecometbft/cometbft#4990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4992\"\u003ecometbft/cometbft#4992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4998\"\u003ecometbft/cometbft#4998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4997\"\u003ecometbft/cometbft#4997\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4994\"\u003ecometbft/cometbft#4994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4995\"\u003ecometbft/cometbft#4995\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typo in workflow_dispatch (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5164\"\u003e#5164\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5166\"\u003ecometbft/cometbft#5166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(testapp-docker): release two images, not one (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5014\"\u003e#5014\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5168\"\u003ecometbft/cometbft#5168\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/main/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCHANGELOG\u003c/h1\u003e\n\u003ch2\u003eUNRELEASED\u003c/h2\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[evidence]\u003c/code\u003e Add validation for Light Client Attack evidence ByzantineValidators\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5638\"\u003e#5638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Fix buffer offset bug in \u003ccode\u003eProposerPriorityHash\u003c/code\u003e that caused hash collisions when validator priorities differed\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5613\"\u003e#5613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e fix(privval): Ephemeral Port Exhaustion\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e fix(blocksync): \u003ccode\u003eExtendedCommit\u003c/code\u003e verification via next blocks \u003ccode\u003eLastCommit\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5629\"\u003e#5629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[p2p] fix(lp2p): enforce stream max size (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5647\"\u003e#5647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[metrics]\u003c/code\u003e fix(metrics)!: peer_send_queue_size\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5648\"\u003e#5648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e fix adaptive_sync and streamline stateSync logic\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5663\"\u003e#5663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e Modify blocksync to use full commit verification instead of light\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5663\"\u003e#5663\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[adaptivesync]\u003c/code\u003e Simplify loop, reuse blockExec.ValidateBlock\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5717\"\u003e#5717\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVEMENTS\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[ci]\u003c/code\u003e: add lp2p testnet (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5643\"\u003e#5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e feat!(p2p): introduce follower-mode. Improve lib-p2p integraap access\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Add validation for \u003ccode\u003eAuthorityParams.Authority\u003c/code\u003e field in consensus params, enforcing a maximum length of 256 characters (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5511\"\u003e#5511\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e perf(mempool/cache): Optimize LRUTxCache.Remove to reduce lock contention and map access\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5244\"\u003e#5244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[e2e]\u003c/code\u003e add support for testing different keytypes, including BLS\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/3513\"\u003e#3513\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto]\u003c/code\u003e Reduce BLS signature size to 48 bytes by increasing pubkey size to\n192 bytes (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3624\"\u003e#3624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e Add configurable \u003ccode\u003emax-snapshot-chunks\u003c/code\u003e parameter to validate max amount of chunks in a \u003ccode\u003eSnapshotResponse\u003c/code\u003e.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5549\"\u003e#5549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(lp2p): make reactor queue configurable\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5662\"\u003e#5662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[cli]\u003c/code\u003e print lib-p2p peer id\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5667\"\u003e#5667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e Add warning when go-libp2p transport is enabled, conveying that the setting\nshould only be activated if it can be enabled simultaneously for all validators\nand peer IDs have been predetermined and exchanged\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5692\"\u003e#5692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(p2p): add adaptive sync for comet-p2p\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5705\"\u003e#5705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c56d64ec53bd72dfd99a5b0f5cb3eaad224a7021\"\u003e\u003ccode\u003ec56d64e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/01d5ea5ceea466cfe4a81c107269570c01c7c9a5\"\u003e\u003ccode\u003e01d5ea5\u003c/code\u003e\u003c/a\u003e test: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5581\"\u003e#5581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/bd517d2eb251e966aa192929cbc9afd1f7ae69c5\"\u003e\u003ccode\u003ebd517d2\u003c/code\u003e\u003c/a\u003e test: remove unnecessary loop variable capture\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/7c43155314c1ab52036814b1ffb702c2767b312a\"\u003e\u003ccode\u003e7c43155\u003c/code\u003e\u003c/a\u003e test: add coverage for TotalVotingPowerSafe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/eeb4a59930a0407f7581c2214f2f44eae65085df\"\u003e\u003ccode\u003eeeb4a59\u003c/code\u003e\u003c/a\u003e fix test cases in validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/161f7ac9fcb14293fce10e8160f44e671c520953\"\u003e\u003ccode\u003e161f7ac\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/a4e41a11fe723ba7b659460dcec1215769b9dda7\"\u003e\u003ccode\u003ea4e41a1\u003c/code\u003e\u003c/a\u003e fix linter errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/26dc17f5a8b33efeb4865ce2503b7bc792bc6a78\"\u003e\u003ccode\u003e26dc17f\u003c/code\u003e\u003c/a\u003e Add ValidateBlock tests for median time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c36a8edb32bdb8f0661db47ce2e64cd17fe61e08\"\u003e\u003ccode\u003ec36a8ed\u003c/code\u003e\u003c/a\u003e fix verbs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/dcf7e3b4bceddc1d0e55d67d1ac80e85fd9ea87c\"\u003e\u003ccode\u003edcf7e3b\u003c/code\u003e\u003c/a\u003e add test and fix a test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.0...v0.38.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cosmos/cosmos-sdk` from 0.50.0-rc.0 to 0.50.14\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases\"\u003egithub.com/cosmos/cosmos-sdk's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.50.14\u003c/h2\u003e\n\u003ch1\u003eCosmos SDK v0.50.14 Release Notes\u003c/h1\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-p22h-3m2v-cmgh\"\u003eGHSA-p22h-3m2v-cmgh\u003c/a\u003e.\nIt resolves a \u003ccode\u003ex/distribution\u003c/code\u003e module issue that can halt chains when the historical rewards pool overflows.\nChains using the \u003ccode\u003ex/distribution\u003c/code\u003e module are affected by this issue.\u003c/p\u003e\n\u003cp\u003eWe recommended upgrading to this patch release as soon as possible.\u003c/p\u003e\n\u003cp\u003eThis patch is state-breaking; chains must perform a coordinated upgrade. This patch cannot be applied in a rolling upgrade.\u003c/p\u003e\n\u003ch2\u003e📝 Changelog\u003c/h2\u003e\n\u003cp\u003eCheck out the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/v0.50.14/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for an exhaustive list of changes or \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/v0.50.13...v0.50.14\"\u003ecompare changes\u003c/a\u003e from the last release.\u003c/p\u003e\n\u003ch2\u003ev0.50.13\u003c/h2\u003e\n\u003ch1\u003eCosmos SDK v0.50.13 Release Notes\u003c/h1\u003e\n\u003cp\u003e💬 \u003ca href=\"https://github.com/orgs/cosmos/discussions/6\"\u003e\u003cstrong\u003eRelease Discussion\u003c/strong\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-47ww-ff84-4jrg\"\u003eGHSA-47ww-ff84-4jrg\u003c/a\u003e.\nIt resolves a \u003ccode\u003ex/group\u003c/code\u003e module issue that can halt chains when there is invalid state in the endblocker.\nOnly users of the \u003ccode\u003ex/group\u003c/code\u003e module are affected by this issue.\u003c/p\u003e\n\u003cp\u003eWe recommended to upgrade to this patch release as soon as possible.\u003c/p\u003e\n\u003cp\u003eThis patch is not state-breaking, so chains can upgrade in a rolling manner. This does not have to be a coordinated upgrade. However, validators should upgrade as soon as possible when the release is made available. If the vulnerability is exploited before 2/3 is patched, the chain will halt.\u003c/p\u003e\n\u003ch2\u003e📝 Changelog\u003c/h2\u003e\n\u003cp\u003eCheck out the \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/v0.50.13/CHANGELOG.md\"\u003echangelog\u003c/a\u003e for an exhaustive list of changes or \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/v0.50.12...v0.50.13\"\u003ecompare changes\u003c/a\u003e from last release.\u003c/p\u003e\n\u003ch2\u003ev0.50.12\u003c/h2\u003e\n\u003ch1\u003eCosmos SDK v0.50.12 Release Notes\u003c/h1\u003e\n\u003cp\u003e💬 \u003ca href=\"https://github.com/orgs/cosmos/discussions/58\"\u003e\u003cstrong\u003eRelease Discussion\u003c/strong\u003e\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e🚀 Highlights\u003c/h2\u003e\n\u003cp\u003eThis patch release fixes \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-x5vx-95h7-rv4p\"\u003eGHSA-x5vx-95h7-rv4p\u003c/a\u003e.\nIt resolves a \u003ccode\u003ex/group\u003c/code\u003e module issue that can halt chain when handling a malicious proposal.\nOnly users of the \u003ccode\u003ex/group\u003c/code\u003e module are affected by this issue.\u003c/p\u003e\n\u003cp\u003eWe recommended to upgrade to this patch release as soon as possible.\nWhen upgrading from \u0026lt;= v0.50.11, please use a chain upgrade to ensure that 2/3 of the validator power upgrade to v0.50.12.\u003c/p\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cosmos/cosmos-sdk/blob/v0.50.14/CHANGELOG.md\"\u003egithub.com/cosmos/cosmos-sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.14\"\u003ev0.50.14\u003c/a\u003e - 2025-07-08\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-p22h-3m2v-cmgh\"\u003eGHSA-p22h-3m2v-cmgh\u003c/a\u003e Fix x/distribution can halt when historical rewards overflow.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.13\"\u003ev0.50.13\u003c/a\u003e - 2025-03-12\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-47ww-ff84-4jrg\"\u003eGHSA-47ww-ff84-4jrg\u003c/a\u003e Fix x/group can halt when erroring in EndBlocker\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.12\"\u003ev0.50.12\u003c/a\u003e - 2025-02-20\u003c/h2\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-x5vx-95h7-rv4p\"\u003eGHSA-x5vx-95h7-rv4p\u003c/a\u003e Fix Group module can halt chain when handling a malicious proposal\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.11\"\u003ev0.50.11\u003c/a\u003e - 2024-12-16\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(crypto/keyring) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21653\"\u003e#21653\u003c/a\u003e New Linux-only backend that adds Linux kernel's \u003ccode\u003ekeyctl\u003c/code\u003e support.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(server) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21941\"\u003e#21941\u003c/a\u003e Regenerate addrbook.json for in place testnet.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-8wcc-m6j2-qxvm\"\u003eABS-0043/ABS-0044\u003c/a\u003e Limit recursion depth for unknown field detection and unpack any\u003c/li\u003e\n\u003cli\u003e(server) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/22564\"\u003e#22564\u003c/a\u003e Fix fallback genesis path in server\u003c/li\u003e\n\u003cli\u003e(x/group) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/22425\"\u003e#22425\u003c/a\u003e Proper address rendering in error\u003c/li\u003e\n\u003cli\u003e(sims) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21906\"\u003e#21906\u003c/a\u003e Skip sims test when running dry on validators\u003c/li\u003e\n\u003cli\u003e(cli) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21919\"\u003e#21919\u003c/a\u003e Query address-by-acc-num by account_id instead of id.\u003c/li\u003e\n\u003cli\u003e(x/group) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/22229\"\u003e#22229\u003c/a\u003e Accept \u003ccode\u003e1\u003c/code\u003e and \u003ccode\u003etry\u003c/code\u003e in CLI for group proposal exec.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.50.10\"\u003ev0.50.10\u003c/a\u003e - 2024-09-20\u003c/h2\u003e\n\u003ch3\u003eFeatures\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(cli) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/20779\"\u003e#20779\u003c/a\u003e Added \u003ccode\u003emodule-hash-by-height\u003c/code\u003e command to query and retrieve module hashes at a specified blockchain height, enhancing debugging capabilities.\u003c/li\u003e\n\u003cli\u003e(cli) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21372\"\u003e#21372\u003c/a\u003e Added a \u003ccode\u003ebulk-add-genesis-account\u003c/code\u003e genesis command to add many genesis accounts at once.\u003c/li\u003e\n\u003cli\u003e(types/collections) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21724\"\u003e#21724\u003c/a\u003e Added \u003ccode\u003eLegacyDec\u003c/code\u003e collection value.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eImprovements\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e(x/bank) \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/pull/21460\"\u003e#21460\u003c/a\u003e Added \u003ccode\u003eSender\u003c/code\u003e attribute in \u003ccode\u003eMsgMultiSend\u003c/code\u003e event.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/f2e6295b662fdb27ea33da1296c29588ccdaab42\"\u003e\u003ccode\u003ef2e6295\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/7b9d2ff98d02bd5a7edd3b153dd577819cc1d777\"\u003e\u003ccode\u003e7b9d2ff\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/98164408932ee74369b7ce18aa13bb1a1a6ba76b\"\u003e\u003ccode\u003e9816440\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/158f14600e3ecc53b6f4ccb5823fa6c276f6a071\"\u003e\u003ccode\u003e158f146\u003c/code\u003e\u003c/a\u003e chore: remove unused orm module (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23633\"\u003e#23633\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23637\"\u003e#23637\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/effb71f9068592c845691e2def9b04b80149ce0b\"\u003e\u003ccode\u003eeffb71f\u003c/code\u003e\u003c/a\u003e docs: correct explanation on how to set custom signer via depinject (backport...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/b9db4d29aaeaf95887c5363c8050dc342ed4f1a2\"\u003e\u003ccode\u003eb9db4d2\u003c/code\u003e\u003c/a\u003e docs(keyring): add keyctl docs (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23563\"\u003e#23563\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23566\"\u003e#23566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5f08d2183b1f40aac9cdcc99708fea8ece2abb98\"\u003e\u003ccode\u003e5f08d21\u003c/code\u003e\u003c/a\u003e feat(client/v2): add map support (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23544\"\u003e#23544\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23554\"\u003e#23554\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/f1b139de544aec25b90dfda5db6fb50128b9228c\"\u003e\u003ccode\u003ef1b139d\u003c/code\u003e\u003c/a\u003e feat(x/tx): add an option to encode maps using amino json (backport \u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23539\"\u003e#23539\u003c/a\u003e) (...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/9d3c384c843648d50bceb324bd5dea925b58962d\"\u003e\u003ccode\u003e9d3c384\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/cosmos/ledger-cosmos-go from 0.13.3 to 0.14.0 (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/f4655874070078f7b92ecf1235d7fd35531809b9\"\u003e\u003ccode\u003ef465587\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/cosmos/cosmos-db from 1.1.0 to 1.1.1 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/23030\"\u003e#23030\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/v0.50.0-rc.0...v0.50.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.58.1 to 1.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.70.0\u003c/h2\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eclient: reject service configs containing an invalid retryPolicy in accordance with gRFCs \u003ca href=\"https://github.com/grpc/proposal/blob/master/A21-service-config-error-handling.md\"\u003eA21\u003c/a\u003e and \u003ca href=\"https://github.com/grpc/proposal/blob/master/A6-client-retries.md\"\u003eA6\u003c/a\u003e.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7905\"\u003e#7905\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eNote that this is a potential breaking change for some users using an invalid configuration, but continuing to allow this behavior would violate our cross-language compatibility requirements.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exdsclient: fallback to a secondary management server (if specified in the bootstrap configuration) when the primary is down is enabled by default. Can be disabled by setting the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_XDS_FALLBACK\u003c/code\u003e to \u003ccode\u003efalse\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7949\"\u003e#7949\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eexperimental/credentials: experimental transport credentials are added which don't enforce ALPN. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7980\"\u003e#7980\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eThese credentials will be removed in an upcoming grpc-go release. Users must not rely on these credentials directly. Instead, they should either vendor a specific version of gRPC or copy the relevant credentials into their own codebase if absolutely necessary.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003exds: fix a possible deadlock that happens when both the client application and the xDS management server (responsible for configuring the client) are using the xds:/// scheme in their target URIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8011\"\u003e#8011\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: for unary requests, free raw request message data as soon as parsing is finished instead of waiting until the method handler returns. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7998\"\u003e#7998\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/lqs\"\u003e\u003ccode\u003e@​lqs\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eDocumentation\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexamples/features/gracefulstop: add example to demonstrate server graceful stop. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7865\"\u003e#7865\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.69.4\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003erbac: fix support for :path header matchers, which would previously never successfully match (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7965\"\u003e#7965\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eDocumentation\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexamples/features/csm_observability: update example client and server to use the helloworld service instead of echo service (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7945\"\u003e#7945\u003c/a\u003e).\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003eRelease 1.69.3 was accidentally tagged on the master branch and will be deleted. Please update to 1.69.4 instead.\u003c/p\u003e\n\u003ch2\u003eRelease 1.69.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats/experimental: add type aliases for symbols (\u003ccode\u003eMetrics\u003c/code\u003e/etc) that were moved to the stats package (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7929\"\u003e#7929\u003c/a\u003e).\u003c/li\u003e\n\u003cli\u003eclient: set user-agent string to the correct version.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.69.0\u003c/h2\u003e\n\u003ch1\u003eKnown Issues\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eThe recently added \u003ccode\u003egrpc.NewClient\u003c/code\u003e function is incompatible with forward proxies, because it resolves the target hostname on the client instead of passing the hostname to the proxy. A fix is expected to be a part of grpc-go v1.70. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7556\"\u003e#7556\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats/opentelemetry: Introduce new APIs to enable OpenTelemetry instrumentation for metrics on servers and clients (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7874\"\u003e#7874\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003exdsclient: add support to fallback to lower priority servers when higher priority ones are down (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7701\"\u003e#7701\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003edns: Add support for link local IPv6 addresses (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7889\"\u003e#7889\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe new experimental \u003ccode\u003epickfirst\u003c/code\u003e LB policy (disabled by default) supports Happy Eyeballs, interleaving IPv4 and IPv6 address as described in \u003ca href=\"https://www.rfc-editor.org/rfc/rfc8305#section-4\"\u003eRFC-8305 section 4\u003c/a\u003e, to attempt connections to multiple backends concurrently. The experimental \u003ccode\u003epickfirst\u003c/code\u003e policy can be enabled by setting the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_ENABLE_NEW_PICK_FIRST\u003c/code\u003e to \u003ccode\u003etrue\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7725\"\u003e#7725\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7742\"\u003e#7742\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/98a0092952dd4d8443229c3a335ec592d9c40c9b\"\u003e\u003ccode\u003e98a0092\u003c/code\u003e\u003c/a\u003e Change version to 1.70.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7984\"\u003e#7984\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/bf380dec5e059ea6e7d07cec015dd0c913831a6a\"\u003e\u003ccode\u003ebf380de\u003c/code\u003e\u003c/a\u003e Cherrypick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7998\"\u003e#7998\u003c/a\u003e,  \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8011\"\u003e#8011\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8010\"\u003e#8010\u003c/a\u003e into 1.70.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8028\"\u003e#8028\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/54b3eb97dbf7400efb5750f26084c2d3b2eff120\"\u003e\u003ccode\u003e54b3eb9\u003c/code\u003e\u003c/a\u003e experimental/credentials: Add credentials that don't enforce ALPN (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7980\"\u003e#7980\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8\"\u003e#8\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/62b9185a6296155e47efd39d60298d8de0a6ed1d\"\u003e\u003ccode\u003e62b9185\u003c/code\u003e\u003c/a\u003e clustetresolver: Copy endpoints.Addresses slice from DNS updates to avoid dat...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/724f450f77a09bade8174e5052625977069aaf81\"\u003e\u003ccode\u003e724f450\u003c/code\u003e\u003c/a\u003e examples/features/csm_observability: use helloworld client and server instead...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/e8d5feb181766059429259ce3345ddb1f667ded5\"\u003e\u003ccode\u003ee8d5feb\u003c/code\u003e\u003c/a\u003e rbac: add method name to :path in headers (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7965\"\u003e#7965\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/e912015fd3f4aabdff6d6cf835e321c19a204afb\"\u003e\u003ccode\u003ee912015\u003c/code\u003e\u003c/a\u003e cleanup: Fix usages of non-constant format strings (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7959\"\u003e#7959\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/681334a46115da3a5f9086c47e3d501a19362256\"\u003e\u003ccode\u003e681334a\u003c/code\u003e\u003c/a\u003e cleanup: replace dial with newclient (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7943\"\u003e#7943\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/063d352de07403a582ef33f8f5f8149e3b57c47e\"\u003e\u003ccode\u003e063d352\u003c/code\u003e\u003c/a\u003e internal/resolver: introduce a new resolver to handle target URI and proxy ad...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/10c7e13311f48bf5237738f4f19b53f62b1146cd\"\u003e\u003ccode\u003e10c7e13\u003c/code\u003e\u003c/a\u003e outlierdetection: Support health listener for ejection updates (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/7908\"\u003e#7908\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.58.1...v1.70.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/protobuf` from 1.31.0 to 1.36.5\n\nUpdates `filippo.io/edwards25519` from 1.0.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/325f520de716c1d2d2b4e8dc2f82c7ccc5fac764\"\u003e\u003ccode\u003e325f520\u003c/code\u003e\u003c/a\u003e all: update Go version\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/c0501e42ed9e2e9c0f835c0cd04ac9290b09611e\"\u003e\u003ccode\u003ec0501e4\u003c/code\u003e\u003c/a\u003e all: drop old +build lines\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/23384ff85ba004b0c4d61c2e85e4170cc25bb59b\"\u003e\u003ccode\u003e23384ff\u003c/code\u003e\u003c/a\u003e all: use the indefinite article an in comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/16197b4051cdd9be445994c80d43145350ba7d6a\"\u003e\u003ccode\u003e16197b4\u003c/code\u003e\u003c/a\u003e crypto/internal/edwards25519: shorten quick.Check tests in short mode\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/6387a56aa63ba12266063ae61fc7736bb425a59f\"\u003e\u003ccode\u003e6387a56\u003c/code\u003e\u003c/a\u003e all: fix misuses of \u0026quot;a\u0026quot; vs \u0026quot;an\u0026quot;\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/c901e5ec3cea876847d87a6b2db0b74fe9eb330a\"\u003e\u003ccode\u003ec901e5e\u003c/code\u003e\u003c/a\u003e crypto/internal/edwards25519: reduce Point size by reordering fields\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/daffb3191296479a2895abcf1ecec9ebf68cc987\"\u003e\u003ccode\u003edaffb31\u003c/code\u003e\u003c/a\u003e all: fix problematic comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/5caf132ffa3cf766bd20ed8a226930b7ec6898a4\"\u003e\u003ccode\u003e5caf132\u003c/code\u003e\u003c/a\u003e all: give nested modules fully-qualified names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/4bafd0bab422dc89780c22bfff68171f97908784\"\u003e\u003ccode\u003e4bafd0b\u003c/code\u003e\u003c/a\u003e edwards25519: gofmt scalar_fiat.go\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.0.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/dvsekhvalnov/jose2go` from 1.5.0 to 1.6.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/48ba0b76bc881767cff2723388f4dd1a47c5104a\"\u003e\u003ccode\u003e48ba0b7\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/32\"\u003e#32\u003c/a\u003e from dvsekhvalnov/issue-31-security-tuning\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/05eb00788125e3996824d2005e850ed8b37d5aa4\"\u003e\u003ccode\u003e05eb007\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/e0264a274aa4c14e22f197c5325599224c1dd412\"\u003e\u003ccode\u003ee0264a2\u003c/code\u003e\u003c/a\u003e added helper matchers: Alg and Eng\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/0f6c7c346282f2d264aef1d7dec8be71f9190b08\"\u003e\u003ccode\u003e0f6c7c3\u003c/code\u003e\u003c/a\u003e MatchAlg helper\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/cf0a53b05fc1faf3e655a30bd7d523cb3a2c6dbd\"\u003e\u003ccode\u003ecf0a53b\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/299576231d2311655289f451218678044d6ddbc9\"\u003e\u003ccode\u003e2995762\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/9a18aff07b6c5574e02d74439ad7d7ae88510b6f\"\u003e\u003ccode\u003e9a18aff\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/675bb14fb3216d48f571b7e5d4274faf4aceb069\"\u003e\u003ccode\u003e675bb14\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/8e9e0d1c6b39ac448a6042ed1275efa70a81c7b7\"\u003e\u003ccode\u003e8e9e0d1\u003c/code\u003e\u003c/a\u003e updated p2c limits with new OWASP numbers, docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/ed5dd96763d198ce95dc10b9252cb96854522114\"\u003e\u003ccode\u003eed5dd96\u003c/code\u003e\u003c/a\u003e Unit tests for custom 'p2c' headers min/max limits\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dvsekhvalnov/jose2go/compare/v1.5...v1.6.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/golang/glog` from 1.1.0 to 1.2.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang/glog/releases\"\u003egithub.com/golang/glog's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.2.3\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: check that stderr is valid before using it by default by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/72\"\u003egolang/glog#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eglog: fix typo by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/73\"\u003egolang/glog#73\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.2.2...v1.2.3\"\u003ehttps://github.com/golang/glog/compare/v1.2.2...v1.2.3\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: avoid calling user.Current() on windows by \u003ca href=\"https://github.com/bentekkie\"\u003e\u003ccode\u003e@​bentekkie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/69\"\u003egolang/glog#69\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.2.1...v1.2.2\"\u003ehttps://github.com/golang/glog/compare/v1.2.1...v1.2.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.2.1\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: don't hold mutex when sync'ing by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/68\"\u003egolang/glog#68\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.2.0...v1.2.1\"\u003ehttps://github.com/golang/glog/compare/v1.2.0...v1.2.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.2.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: add context variants and logsink tests by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/66\"\u003egolang/glog#66\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.1.2...v1.2.0\"\u003ehttps://github.com/golang/glog/compare/v1.1.2...v1.2.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.2\u003c/h2\u003e\n\u003cp\u003eBugfix release.\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eglog: populate symlinks -log_link directory by \u003ca href=\"https://github.com/chressie\"\u003e\u003ccode\u003e@​chressie\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang/glog/pull/64\"\u003egolang/glog#64\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang/glog/compare/v1.1.1...v1.1.2\"\u003ehttps://github.com/golang/glog/compare/v1.1.1...v1.1.2\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.1.1\u003c/h2\u003e\n\u003cp\u003eBugfixes since the larger v1.1.0, which have been addressed.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/04dbec0df8d03d5c187beaf5ce8e6c58e9fc82b5\"\u003e\u003ccode\u003e04dbec0\u003c/code\u003e\u003c/a\u003e glog: fix typo (\u003ca href=\"https://redirect.github.com/golang/glog/issues/73\"\u003e#73\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/459cf3b8151dcfd8aa971077774eaf0c804119e4\"\u003e\u003ccode\u003e459cf3b\u003c/code\u003e\u003c/a\u003e glog: check that stderr is valid before using it by default (\u003ca href=\"https://redirect.github.com/golang/glog/issues/72\"\u003e#72\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/97303146a4ffecf364d4300e07fca855d0062c43\"\u003e\u003ccode\u003e9730314\u003c/code\u003e\u003c/a\u003e glog: avoid calling user.Current() on windows (\u003ca href=\"https://redirect.github.com/golang/glog/issues/69\"\u003e#69\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/861d094757551d2f65d1003f0ec93bc92b254a5a\"\u003e\u003ccode\u003e861d094\u003c/code\u003e\u003c/a\u003e glog: don't hold mutex when sync'ing (\u003ca href=\"https://redirect.github.com/golang/glog/issues/68\"\u003e#68\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/b256bbe5d3f846c1d1ce73030c10973378e04cf0\"\u003e\u003ccode\u003eb256bbe\u003c/code\u003e\u003c/a\u003e glog: add context variants to most log functions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/bcf318487a966b61bca6189643b72648fa132e6e\"\u003e\u003ccode\u003ebcf3184\u003c/code\u003e\u003c/a\u003e glog/internal/logsink: add logsink tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/6b9d7f7df28d318a28dde3adb8a5e9ae9bf1abaf\"\u003e\u003ccode\u003e6b9d7f7\u003c/code\u003e\u003c/a\u003e glog: populate symlinks -log_link directory (\u003ca href=\"https://redirect.github.com/golang/glog/issues/64\"\u003e#64\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/03ad3c2a3f1c767129f0b355507de7ae615f53b8\"\u003e\u003ccode\u003e03ad3c2\u003c/code\u003e\u003c/a\u003e glog: use os.Stderr directly for writing to stderr (\u003ca href=\"https://redirect.github.com/golang/glog/issues/62\"\u003e#62\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/6ce8ac99c51353f04e95b18e2ef0fbc783df580c\"\u003e\u003ccode\u003e6ce8ac9\u003c/code\u003e\u003c/a\u003e glog: update minimum go version to go1.19 (\u003ca href=\"https://redirect.github.com/golang/glog/issues/61\"\u003e#61\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/glog/commit/c0f9e3d764d339d6b6443032e034c7d3bd5efe3a\"\u003e\u003ccode\u003ec0f9e3d\u003c/code\u003e\u003c/a\u003e glog: don't use SIGABRT on platforms that don't support signals\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/glog/compare/v1.1.0...v1.2.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.1 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.1...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.13.0 to 0.33.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/9290511cd23ab9813a307b7f2615325e3ca98902\"\u003e\u003ccode\u003e9290511\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/fa5273e461966728f91f33da62c0cf511a404c2a\"\u003e\u003ccode\u003efa5273e\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/a8ea4be81f0769fd5857e087083cbb6d3cb9f196\"\u003e\u003ccode\u003ea8ea4be\u003c/code\u003e\u003c/a\u003e ssh: add ServerConfig.PreAuthConnCallback, ServerPreAuthConn (banner) interface\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/71d3a4cfdb0360795ce5f2d7041e01823fd22eb6\"\u003e\u003ccode\u003e71d3a4c\u003c/code\u003e\u003c/a\u003e acme: support challenges that require the ACME client to send a non-empty JSO...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8929309228b460566ebf06dc56684799f352b0b0\"\u003e\u003ccode\u003e8929309\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4a75ba54c28f9c8aa4011c3c5e9e146fd8c83359\"\u003e\u003ccode\u003e4a75ba5\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909\"\u003e\u003ccode\u003eb4f1988\u003c/code\u003e\u003c/a\u003e ssh: make the public key cache a 1-entry FIFO cache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7042ebcbe097f305ba3a93f9a22b4befa4b83d29\"\u003e\u003ccode\u003e7042ebc\u003c/code\u003e\u003c/a\u003e openpgp/clearsign: just use rand.Reader in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3e90321ac7bcee3d924ed63ed3ad97be2079cb56\"\u003e\u003ccode\u003e3e90321\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8c4e668694ccbaa1be4785da7e7a40f2ef93152b\"\u003e\u003ccode\u003e8c4e668\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.13.0...v0.33.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.15.0 to 0.35.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/df97a48b7bf2f79d63b98d48185389824125a2cf\"\u003e\u003ccode\u003edf97a48\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2dab271ff1b7396498746703d88fefcddcc5cec7\"\u003e\u003ccode\u003e2dab271\u003c/code\u003e\u003c/a\u003e route: treat short sockaddr lengths as unspecified\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b914489dfb743e20a8cef8c4586d9329303f7511\"\u003e\u003ccode\u003eb914489\u003c/code\u003e\u003c/a\u003e internal/http3: refactor in prep for sharing transport/server code\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/ebd23f8b4b6645821a91bf9da4a10b3d30a98fb2\"\u003e\u003ccode\u003eebd23f8\u003c/code\u003e\u003c/a\u003e route: fix parsing network address of length zero\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/938a9fb94e41285a443b0882dbc46f2a4c6ed484\"\u003e\u003ccode\u003e938a9fb\u003c/code\u003e\u003c/a\u003e internal/http3: add request/response body transfer\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/145b2d7b6deef8ae469696157bcb974d045cfc05\"\u003e\u003ccode\u003e145b2d7\u003c/code\u003e\u003c/a\u003e internal/http3: add RoundTrip\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/5bda71aec0d0242e8b2cc529863c6484c0f1f24b\"\u003e\u003ccode\u003e5bda71a\u003c/code\u003e\u003c/a\u003e internal/http3: define connection and stream error types\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/3c1185a39b172f62f67243986cf710bd74776347\"\u003e\u003ccode\u003e3c1185a\u003c/code\u003e\u003c/a\u003e internal/http3: return error on mid-frame EOF\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/a6c2c7f3642a8abe22535078b3b40ba3e4fcb9f0\"\u003e\u003ccode\u003ea6c2c7f\u003c/code\u003e\u003c/a\u003e http2, internal/httpcommon: factor out common request header logic for h2/h3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c72e89d6a9e44335237356faeef3b98d5c1fa770\"\u003e\u003ccode\u003ec72e89d\u003c/code\u003e\u003c/a\u003e internal/http3: QPACK encoding and decoding\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.15.0...v0.35.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.10.0 to 0.24.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/22134a41033e44c2cd074106770ab5b7ca910d15\"\u003e\u003ccode\u003e22134a4\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3e6480915d39dd1a80fa460e56413857f02cc1b9\"\u003e\u003ccode\u003e3e64809\u003c/code\u003e\u003c/a\u003e x/oauth2: add Token.ExpiresIn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/16a9973a41c72ea3e252e9c14be34fcaa2928211\"\u003e\u003ccode\u003e16a9973\u003c/code\u003e\u003c/a\u003e jwt: rename example to avoid vet error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/b52af7d5b4e39d5bb1ee067d8aa110fcce9e4cc7\"\u003e\u003ccode\u003eb52af7d\u003c/code\u003e\u003c/a\u003e endpoints: add GitLab DeviceAuthURL\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/6d8340f1c53c54333dc5f280d68732afd4d05113\"\u003e\u003ccode\u003e6d8340f\u003c/code\u003e\u003c/a\u003e LICENSE: update per Google Legal\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/5fd42413edb3b1699004a31b72e485e0e4ba1b13\"\u003e\u003ccode\u003e5fd4241\u003c/code\u003e\u003c/a\u003e google: update compute token refresh\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/84cb9f7f5c5a639955cd501bfdd54f0e63997e61\"\u003e\u003ccode\u003e84cb9f7\u003c/code\u003e\u003c/a\u003e oauth2: fix typo in comment\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/4b7f0bdbc7c30d05383d2597847300fbb870608b\"\u003e\u003ccode\u003e4b7f0bd\u003c/code\u003e\u003c/a\u003e go.mod: update cloud.google.com/go/compute/metadata dependency\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/e11eea88a89331c1fae3d38a37f484363a8d597d\"\u003e\u003ccode\u003ee11eea8\u003c/code\u003e\u003c/a\u003e microsoft: added DeviceAuthURL to AzureADEndpoint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/d0e617c58cf747cf27df9762003502f814dd524c\"\u003e\u003ccode\u003ed0e617c\u003c/code\u003e\u003c/a\u003e google: add Credentials.UniverseDomainProvider\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.10.0...v0.24.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/aljo242/block-sdk/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/aljo242/block-sdk/pull/1","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/aljo242%2Fblock-sdk/issues/1","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/1/packages"}},{"old_version":"0.5.10","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-03-19T14:23:17.000Z","version_change":"0.5.10 → 0.5.14","issue":{"uuid":"4102076223","node_id":"PR_kwDOOMe5cc7L3jPz","number":12,"state":"closed","title":"Bump the go_modules group across 1 directory with 7 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":"2026-03-20T20:39:48.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T14:23:17.000Z","updated_at":"2026-03-20T20:39:58.000Z","time_to_close":108991,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"Bump","group_name":"go_modules","update_count":7,"packages":[{"name":"github.com/golang-jwt/jwt/v5","old_version":"5.2.1","new_version":"5.2.2","repository_url":"https://github.com/golang-jwt/jwt"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.5","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.10","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"golang.org/x/oauth2","old_version":"0.7.0","new_version":"0.27.0","repository_url":"https://github.com/golang/oauth2"},{"name":"google.golang.org/grpc","old_version":"1.56.3","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 5 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.2.1` | `5.2.2` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.10` | `0.5.14` |\n| [golang.org/x/oauth2](https://github.com/golang/oauth2) | `0.7.0` | `0.27.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.56.3` | `1.79.3` |\n\n\nUpdates `github.com/golang-jwt/jwt/v5` from 5.2.1 to 5.2.2\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/golang-jwt/jwt/releases\"\u003egithub.com/golang-jwt/jwt/v5's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev5.2.2\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eFixed \u003ca href=\"https://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\"\u003ehttps://github.com/golang-jwt/jwt/security/advisories/GHSA-mh63-6h87-95cp\u003c/a\u003e by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFixed some typos by \u003ca href=\"https://github.com/Ashikpaul\"\u003e\u003ccode\u003e@​Ashikpaul\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/382\"\u003egolang-jwt/jwt#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild: add go1.22 to ci workflows by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/383\"\u003egolang-jwt/jwt#383\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/387\"\u003egolang-jwt/jwt#387\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/389\"\u003egolang-jwt/jwt#389\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: bump ci tests to include go1.23 by \u003ca href=\"https://github.com/mfridman\"\u003e\u003ccode\u003e@​mfridman\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/405\"\u003egolang-jwt/jwt#405\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix jwt -show by \u003ca href=\"https://github.com/AlexanderYastrebov\"\u003e\u003ccode\u003e@​AlexanderYastrebov\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/406\"\u003egolang-jwt/jwt#406\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edocs: typo by \u003ca href=\"https://github.com/kvii\"\u003e\u003ccode\u003e@​kvii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/407\"\u003egolang-jwt/jwt#407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate SECURITY.md by \u003ca href=\"https://github.com/oxisto\"\u003e\u003ccode\u003e@​oxisto\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/416\"\u003egolang-jwt/jwt#416\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003ejwt.Parse\u003c/code\u003e example to use \u003ccode\u003ejwt.WithValidMethods\u003c/code\u003e by \u003ca href=\"https://github.com/mattt\"\u003e\u003ccode\u003e@​mattt\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/425\"\u003egolang-jwt/jwt#425\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Ashikpaul\"\u003e\u003ccode\u003e@​Ashikpaul\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/382\"\u003egolang-jwt/jwt#382\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/kvii\"\u003e\u003ccode\u003e@​kvii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/407\"\u003egolang-jwt/jwt#407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mattt\"\u003e\u003ccode\u003e@​mattt\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/golang-jwt/jwt/pull/425\"\u003egolang-jwt/jwt#425\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2\"\u003ehttps://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/0951d184286dece21f73c85673fd308786ffe9c3\"\u003e\u003ccode\u003e0951d18\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/c035977d9e11c351f4c05dfeae193923cbab49ee\"\u003e\u003ccode\u003ec035977\u003c/code\u003e\u003c/a\u003e Update Parse example to use WithValidMethods (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/425\"\u003e#425\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/bc8bdca5cced1caa9787e4a1c313a3538544c877\"\u003e\u003ccode\u003ebc8bdca\u003c/code\u003e\u003c/a\u003e Update SECURITY.md (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/416\"\u003e#416\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/5ec246c074b71790eec1f2e05b54daf6ec29ec5f\"\u003e\u003ccode\u003e5ec246c\u003c/code\u003e\u003c/a\u003e docs: typo (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/407\"\u003e#407\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/0123f1ad66cbc45013dbfba6eff0cd81472bfc12\"\u003e\u003ccode\u003e0123f1a\u003c/code\u003e\u003c/a\u003e Fix jwt -show (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/406\"\u003e#406\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/f961c72abd3b91442a9ab3d3e356bf547636e89b\"\u003e\u003ccode\u003ef961c72\u003c/code\u003e\u003c/a\u003e chore: bump ci tests to include go1.23 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/405\"\u003e#405\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/62e504c2810b67f6b97313424411cfffb25e41b0\"\u003e\u003ccode\u003e62e504c\u003c/code\u003e\u003c/a\u003e Bump golangci/golangci-lint-action from 5 to 6 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/389\"\u003e#389\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/1a56dcf532089fc2bb723a3cb4076a4e45cb1c1a\"\u003e\u003ccode\u003e1a56dcf\u003c/code\u003e\u003c/a\u003e Bump golangci/golangci-lint-action from 4 to 5 (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/387\"\u003e#387\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/c8043eab61f0ec5bdd924c1c30caf164a9bb2c66\"\u003e\u003ccode\u003ec8043ea\u003c/code\u003e\u003c/a\u003e build: add go1.22 to ci workflows (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/383\"\u003e#383\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang-jwt/jwt/commit/7c3f6dc56316e5e222a9df9612ec04243189a989\"\u003e\u003ccode\u003e7c3f6dc\u003c/code\u003e\u003c/a\u003e Update README.md (\u003ca href=\"https://redirect.github.com/golang-jwt/jwt/issues/382\"\u003e#382\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/golang-jwt/jwt/compare/v5.2.1...v5.2.2\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.5 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.5...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.10 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/9d122a61c181b044e6b8b9c09979dfe7c513e2db\"\u003e\u003ccode\u003e9d122a6\u003c/code\u003e\u003c/a\u003e release version v0.5.11\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4ce6f08566c86bf66a9bc1c2f811336ae2e462c0\"\u003e\u003ccode\u003e4ce6f08\u003c/code\u003e\u003c/a\u003e lzma: fix handling of small dictionary sizes\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/0b7c695d23f84aa7e968bbcaa1980847683d909a\"\u003e\u003ccode\u003e0b7c695\u003c/code\u003e\u003c/a\u003e xz: add reader benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/553507794087117cd9bdc95c924c1c5611bd991a\"\u003e\u003ccode\u003e5535077\u003c/code\u003e\u003c/a\u003e xz: add compression reate to Writer benchmark\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/886dc9acde193dec013d4812372011c64f6efbc2\"\u003e\u003ccode\u003e886dc9a\u003c/code\u003e\u003c/a\u003e xz: add benchmark for Writer\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.10...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.25.0 to 0.32.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8929309228b460566ebf06dc56684799f352b0b0\"\u003e\u003ccode\u003e8929309\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4a75ba54c28f9c8aa4011c3c5e9e146fd8c83359\"\u003e\u003ccode\u003e4a75ba5\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f1988a35dee11ec3e05d6bf3e90b695fbd8909\"\u003e\u003ccode\u003eb4f1988\u003c/code\u003e\u003c/a\u003e ssh: make the public key cache a 1-entry FIFO cache\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/7042ebcbe097f305ba3a93f9a22b4befa4b83d29\"\u003e\u003ccode\u003e7042ebc\u003c/code\u003e\u003c/a\u003e openpgp/clearsign: just use rand.Reader in tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/3e90321ac7bcee3d924ed63ed3ad97be2079cb56\"\u003e\u003ccode\u003e3e90321\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/8c4e668694ccbaa1be4785da7e7a40f2ef93152b\"\u003e\u003ccode\u003e8c4e668\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/6018723c74059e3b91c84268b212c2f6cdab1f64\"\u003e\u003ccode\u003e6018723\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/71ed71b4faf97caafd1863fed003e9ac311f10ee\"\u003e\u003ccode\u003e71ed71b\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/750a45fe5e473d5afa193e9088f3d135e64eca26\"\u003e\u003ccode\u003e750a45f\u003c/code\u003e\u003c/a\u003e sha3: add MarshalBinary, AppendBinary, and UnmarshalBinary\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/36b172546bd03a74c79e109ec84c599b672ea9e4\"\u003e\u003ccode\u003e36b1725\u003c/code\u003e\u003c/a\u003e sha3: avoid trailing permutation\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.25.0...v0.32.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.27.0 to 0.34.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd\"\u003e\u003ccode\u003e8da7ed1\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d\"\u003e\u003ccode\u003e2124140\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72\"\u003e\u003ccode\u003ee9d95ba\u003c/code\u003e\u003c/a\u003e http2: do not surface errors from a conn's idle timer expiring\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f\"\u003e\u003ccode\u003ec2be992\u003c/code\u003e\u003c/a\u003e quic: remember which remote connection IDs have been retired\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464\"\u003e\u003ccode\u003edfc720d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb\"\u003e\u003ccode\u003e8e66b04\u003c/code\u003e\u003c/a\u003e html: use strings.EqualFold instead of lowering ourselves\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46\"\u003e\u003ccode\u003eb935f7b\u003c/code\u003e\u003c/a\u003e html: avoid endless loop on error token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3\"\u003e\u003ccode\u003e9af49ef\u003c/code\u003e\u003c/a\u003e route: remove unused sizeof* consts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a\"\u003e\u003ccode\u003e6705db9\u003c/code\u003e\u003c/a\u003e quic: clean up crypto streams when dropping packet protection keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200\"\u003e\u003ccode\u003e4ef7588\u003c/code\u003e\u003c/a\u003e quic: handle ACK frame in packet which drops number space\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.27.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/oauth2` from 0.7.0 to 0.27.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/681b4d8edca1bcfea5bce685d77ea7b82ed3e7b3\"\u003e\u003ccode\u003e681b4d8\u003c/code\u003e\u003c/a\u003e jws: split token into fixed number of parts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3f78298beea38fb76a3fbca33e3056f4b7eb5502\"\u003e\u003ccode\u003e3f78298\u003c/code\u003e\u003c/a\u003e all: upgrade go directive to at least 1.23.0 [generated]\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/109dabf9017129171d1807e485ca5633ecd095ac\"\u003e\u003ccode\u003e109dabf\u003c/code\u003e\u003c/a\u003e endpoints: add links/provider for Discord\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/ac571fa341c2a2b979d2b2c8341fd24767ef5d47\"\u003e\u003ccode\u003eac571fa\u003c/code\u003e\u003c/a\u003e oauth2: fix docs for Config.DeviceAuth\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/314ee5b92bf23c4973aa8e61eba3ff458e80eef2\"\u003e\u003ccode\u003e314ee5b\u003c/code\u003e\u003c/a\u003e endpoints: add patreon endpoint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/b9c813be7d0ec3262d46deb8677ba5cda93d95ec\"\u003e\u003ccode\u003eb9c813b\u003c/code\u003e\u003c/a\u003e google: add warning about externally-provided credentials\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/49a531d12a9ad6fa9f5a070d577ac752ada772c9\"\u003e\u003ccode\u003e49a531d\u003c/code\u003e\u003c/a\u003e all: make method and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/22134a41033e44c2cd074106770ab5b7ca910d15\"\u003e\u003ccode\u003e22134a4\u003c/code\u003e\u003c/a\u003e README: don't recommend go get\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/3e6480915d39dd1a80fa460e56413857f02cc1b9\"\u003e\u003ccode\u003e3e64809\u003c/code\u003e\u003c/a\u003e x/oauth2: add Token.ExpiresIn\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/oauth2/commit/16a9973a41c72ea3e252e9c14be34fcaa2928211\"\u003e\u003ccode\u003e16a9973\u003c/code\u003e\u003c/a\u003e jwt: rename example to avoid vet error\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/oauth2/compare/v0.7.0...v0.27.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.56.3 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.56.3...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/launchbynttdata/tf-azurerm-module_reference-iothub/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/launchbynttdata/tf-azurerm-module_reference-iothub/pull/12","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/launchbynttdata%2Ftf-azurerm-module_reference-iothub/issues/12","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/12/packages"}},{"old_version":"0.5.11","new_version":"0.5.14","update_type":"patch","path":"/test/integration","pr_created_at":"2026-03-19T02:15:05.000Z","version_change":"0.5.11 → 0.5.14","issue":{"uuid":"4098794966","node_id":"PR_kwDORqemQ87LuLNa","number":5,"state":"closed","title":"build(deps): Bump github.com/ulikunitz/xz from 0.5.11 to 0.5.14 in /test/integration","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-19T03:14:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T02:15:05.000Z","updated_at":"2026-03-19T03:14:47.000Z","time_to_close":3573,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","packages":[{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":"/test/integration","ecosystem":"go"},"body":"Bumps [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) from 0.5.11 to 0.5.14.\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/4f11dce79b9977ec2976a978d6c594ea1c23cf29\"\u003e\u003ccode\u003e4f11dce\u003c/code\u003e\u003c/a\u003e Update README.md and SECURITY.md to address security questions\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/f56ebbfaa2400067dcda8ade26ce912c2873ca08\"\u003e\u003ccode\u003ef56ebbf\u003c/code\u003e\u003c/a\u003e TODO.md: fix a typo\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.11...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=github.com/ulikunitz/xz\u0026package-manager=go_modules\u0026previous-version=0.5.11\u0026new-version=0.5.14)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/GoogleCloudPlatform/terraform-google-firebase/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/GoogleCloudPlatform/terraform-google-firebase/pull/5","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/GoogleCloudPlatform%2Fterraform-google-firebase/issues/5","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/5/packages"}},{"old_version":"0.5.11","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-03-19T01:36:33.000Z","version_change":"0.5.11 → 0.5.14","issue":{"uuid":"4098674635","node_id":"PR_kwDOOmKkos7Ltyg8","number":108,"state":"open","title":"chore(deps): Bump the go_modules group across 1 directory with 14 updates","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-03-19T01:36:33.000Z","updated_at":"2026-05-04T04:08:03.127Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): Bump","group_name":"go_modules","update_count":14,"packages":[{"name":"github.com/CosmWasm/wasmd","old_version":"0.55.0","new_version":"0.55.1","repository_url":"https://github.com/CosmWasm/wasmd"},{"name":"github.com/cometbft/cometbft","old_version":"0.38.17","new_version":"0.38.21","repository_url":"https://github.com/cometbft/cometbft"},{"name":"google.golang.org/grpc","old_version":"1.71.0","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/docker/cli","old_version":"26.1.4+incompatible","new_version":"29.2.0+incompatible","repository_url":"https://github.com/docker/cli"},{"name":"github.com/ethereum/go-ethereum","old_version":"1.15.5","new_version":"1.17.0","repository_url":"https://github.com/ethereum/go-ethereum"},{"name":"github.com/go-viper/mapstructure/v2","old_version":"2.2.1","new_version":"2.4.0","repository_url":"https://github.com/go-viper/mapstructure"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.5","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/opencontainers/runc","old_version":"1.1.14","new_version":"1.2.8","repository_url":"https://github.com/opencontainers/runc"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.11","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 10 updates in the / directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/CosmWasm/wasmd](https://github.com/CosmWasm/wasmd) | `0.55.0` | `0.55.1` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `0.38.17` | `0.38.21` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.71.0` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/docker/cli](https://github.com/docker/cli) | `26.1.4+incompatible` | `29.2.0+incompatible` |\n| [github.com/ethereum/go-ethereum](https://github.com/ethereum/go-ethereum) | `1.15.5` | `1.17.0` |\n| [github.com/go-viper/mapstructure/v2](https://github.com/go-viper/mapstructure) | `2.2.1` | `2.4.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/opencontainers/runc](https://github.com/opencontainers/runc) | `1.1.14` | `1.2.8` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.11` | `0.5.14` |\n\n\nUpdates `github.com/CosmWasm/wasmd` from 0.55.0 to 0.55.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CosmWasm/wasmd/releases\"\u003egithub.com/CosmWasm/wasmd's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.55.1\u003c/h2\u003e\n\u003cp\u003eFixes \u003ca href=\"https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2025-004.md\"\u003eCWA-2025-004\u003c/a\u003e, \u003ca href=\"https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2025-005.md\"\u003eCWA-2025-005\u003c/a\u003e and \u003ca href=\"https://github.com/CosmWasm/advisories/blob/main/CWAs/CWA-2025-006.md\"\u003eCWA-2025-006\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/CosmWasm/wasmd/blob/main/CHANGELOG.md\"\u003egithub.com/CosmWasm/wasmd's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eChangelog\u003c/h1\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/HEAD\"\u003eUnreleased\u003c/a\u003e\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.7...HEAD\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.7\"\u003ev0.61.7\u003c/a\u003e (2026-01-29)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.6...v0.61.7\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump cosmos-sdk to \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.53.5\"\u003ev0.53.5\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump cometbft to \u003ca href=\"https://github.com/cometbft/cometbft/releases/tag/v0.38.21\"\u003ev0.38.21\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump ibc-go to \u003ca href=\"https://github.com/cosmos/ibc-go/releases/tag/v10.5.0\"\u003ev10.5.0\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.5\"\u003ev0.61.5\u003c/a\u003e (2025-11-04)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.4...v0.61.5\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eFix ContractInfo protobuf message \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2390\"\u003e#2390\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRetracted v0.61.0 v0.61.1 v0.61.2 v0.61.3 v0.61.4 because of unnecessary api breaking changes. See \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/issues/2386\"\u003eCosmWasm/wasmd#2386\u003c/a\u003e for more details.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.4\"\u003ev0.61.4\u003c/a\u003e (2025-08-29)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.3...v0.61.4\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump wasmvm to v3.0.2 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2359\"\u003e#2359\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.3\"\u003ev0.61.3\u003c/a\u003e (2025-08-27)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.2...v0.61.3\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump wasmvm to v3.0.1 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2355\"\u003e#2355\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.2\"\u003ev0.61.2\u003c/a\u003e (2025-07-29)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.1...v0.61.2\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump cosmos-sdk to v0.53.4 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2334\"\u003e#2334\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.1\"\u003ev0.61.1\u003c/a\u003e (2025-07-08)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.61.0...v0.61.1\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBump cosmos-sdk to \u003ca href=\"https://github.com/cosmos/cosmos-sdk/releases/tag/v0.53.3\"\u003ev0.53.3\u003c/a\u003e which includes a security fix to \u003ca href=\"https://github.com/cosmos/cosmos-sdk/security/advisories/GHSA-p22h-3m2v-cmgh\"\u003eISA-2025-005\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/tree/v0.61.0\"\u003ev0.61.0\u003c/a\u003e (2025-06-24)\u003c/h2\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.55.0...v0.61.0\"\u003eFull Changelog\u003c/a\u003e\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eUpdate to wasmvm 3.0.0 \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/pull/2304\"\u003e#2304\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/fec61cbfb2e1dcfd2b1e86c9fb0a2bc7a9b3a223\"\u003e\u003ccode\u003efec61cb\u003c/code\u003e\u003c/a\u003e Use ExpectedJSONSize function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/41c5c499308b80bb9f09e322cf2334ee59c7cc6f\"\u003e\u003ccode\u003e41c5c49\u003c/code\u003e\u003c/a\u003e Fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/b87bc9d194adbc06410845f0d8b2934b8d0443c2\"\u003e\u003ccode\u003eb87bc9d\u003c/code\u003e\u003c/a\u003e Add setup cost for IBC operations\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/e53611e0f202a17b1780b366ca4f545059b3d27e\"\u003e\u003ccode\u003ee53611e\u003c/code\u003e\u003c/a\u003e Add comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/4bc38cb7ecabad97d11b9fdc2fa586ec7d5027d5\"\u003e\u003ccode\u003e4bc38cb\u003c/code\u003e\u003c/a\u003e Restructure error handling\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/181e9be4f8830dcbaaeb29f3a56036bff8531884\"\u003e\u003ccode\u003e181e9be\u003c/code\u003e\u003c/a\u003e Fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/b908d29f14a0d92fd0d4cb0f544d49c1ff7634e9\"\u003e\u003ccode\u003eb908d29\u003c/code\u003e\u003c/a\u003e Improve readability\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/e3c85fc17b0fc2256958b69e1481d4f25e975cdc\"\u003e\u003ccode\u003ee3c85fc\u003c/code\u003e\u003c/a\u003e Fix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/9b91a71b5b212343e34673e25956031db7497667\"\u003e\u003ccode\u003e9b91a71\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/CosmWasm/wasmd/issues/2238\"\u003e#2238\u003c/a\u003e from CosmWasm/co/update-wasmvm\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/CosmWasm/wasmd/commit/c51b4e453ce9dcfdeb0b2beedf9edf19fce27368\"\u003e\u003ccode\u003ec51b4e4\u003c/code\u003e\u003c/a\u003e Update dockerfile\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/CosmWasm/wasmd/compare/v0.55.0...v0.55.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 0.38.17 to 0.38.21\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.38.21\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore(statesync): add max snapshot chunks configuration (v0.38.x) by \u003ca href=\"https://github.com/mattac21\"\u003e\u003ccode\u003e@​mattac21\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5548\"\u003ecometbft/cometbft#5548\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5581\"\u003ecometbft/cometbft#5581\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.20...v0.38.21\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.20\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eCreate NOTICE (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5495\"\u003e#5495\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5496\"\u003ecometbft/cometbft#5496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: add voting power validation (v0.38.x) by \u003ca href=\"https://github.com/technicallyty\"\u003e\u003ccode\u003e@​technicallyty\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5520\"\u003ecometbft/cometbft#5520\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.19...v0.38.20\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.19\u003c/h2\u003e\n\u003cp\u003eThis is a security patch release to the CometBFT \u003ccode\u003ev0.38.x\u003c/code\u003e family that fixes \u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-hrhf-2vcr-ghch\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003echore: fix test docker image by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5299\"\u003ecometbft/cometbft#5299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: refactor changelogs by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5303\"\u003ecometbft/cometbft#5303\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: update and fix mockery tooling on v0.38 by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5301\"\u003ecometbft/cometbft#5301\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix the linter by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5304\"\u003ecometbft/cometbft#5304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(store):  Properly prune extended commits (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5276\"\u003e#5276\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5313\"\u003ecometbft/cometbft#5313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: clean up the repo by \u003ca href=\"https://github.com/aljo242\"\u003e\u003ccode\u003e@​aljo242\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5315\"\u003ecometbft/cometbft#5315\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: remove exposed dockertest port to unblock postgres test by \u003ca href=\"https://github.com/almk-dev\"\u003e\u003ccode\u003e@​almk-dev\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5325\"\u003ecometbft/cometbft#5325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(consensus/reactor): reject oversized proposals (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5324\"\u003e#5324\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5407\"\u003ecometbft/cometbft#5407\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/be5677c3e58f998b7f67bb6186dd2c9b81a041a1\"\u003eGHSA-hrhf-2vcr-ghch\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\"\u003ehttps://github.com/cometbft/cometbft/compare/v0.38.18...v0.38.19\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.38.18\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: remove redundant error check for PubKeyToProto by \u003ca href=\"https://github.com/islishude\"\u003e\u003ccode\u003e@​islishude\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4917\"\u003ecometbft/cometbft#4917\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove govulncheck (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4946\"\u003e#4946\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4961\"\u003ecometbft/cometbft#4961\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4936\"\u003ecometbft/cometbft#4936\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix(ci): Fix docker builds (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4949\"\u003e#4949\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4963\"\u003ecometbft/cometbft#4963\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.13.0 to 6.14.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4972\"\u003ecometbft/cometbft#4972\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/setup-buildx-action from 3.9.0 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5008\"\u003ecometbft/cometbft#5008\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump docker/build-push-action from 6.14.0 to 6.15.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5009\"\u003ecometbft/cometbft#5009\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/sync from 0.10.0 to 0.11.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4990\"\u003ecometbft/cometbft#4990\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/spf13/cobra from 1.8.1 to 1.9.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4992\"\u003ecometbft/cometbft#4992\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump golang.org/x/net from 0.34.0 to 0.35.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4998\"\u003ecometbft/cometbft#4998\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/decred/dcrd/dcrec/secp256k1/v4 from 4.3.0 to 4.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4997\"\u003ecometbft/cometbft#4997\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump google.golang.org/protobuf from 1.36.4 to 1.36.5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4994\"\u003ecometbft/cometbft#4994\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): Bump github.com/prometheus/client_golang from 1.20.5 to 1.21.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4995\"\u003ecometbft/cometbft#4995\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003echore: fix typo in workflow_dispatch (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5164\"\u003e#5164\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5166\"\u003ecometbft/cometbft#5166\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci(testapp-docker): release two images, not one (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5014\"\u003e#5014\u003c/a\u003e) by \u003ca href=\"https://github.com/mergify\"\u003e\u003ccode\u003e@​mergify\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5168\"\u003ecometbft/cometbft#5168\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/main/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch1\u003eCHANGELOG\u003c/h1\u003e\n\u003ch2\u003eUNRELEASED\u003c/h2\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[evidence]\u003c/code\u003e Add validation for Light Client Attack evidence ByzantineValidators\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5638\"\u003e#5638\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Fix buffer offset bug in \u003ccode\u003eProposerPriorityHash\u003c/code\u003e that caused hash collisions when validator priorities differed\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5613\"\u003e#5613\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e fix(privval): Ephemeral Port Exhaustion\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e fix(blocksync): \u003ccode\u003eExtendedCommit\u003c/code\u003e verification via next blocks \u003ccode\u003eLastCommit\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5629\"\u003e#5629\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e[p2p] fix(lp2p): enforce stream max size (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5647\"\u003e#5647\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[metrics]\u003c/code\u003e fix(metrics)!: peer_send_queue_size\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5648\"\u003e#5648\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e fix adaptive_sync and streamline stateSync logic\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5663\"\u003e#5663\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eIMPROVEMENTS\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[ci]\u003c/code\u003e: add lp2p testnet (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5643\"\u003e#5643\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e feat!(p2p): introduce follower-mode. Improve lib-p2p integraap access\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Add validation for \u003ccode\u003eAuthorityParams.Authority\u003c/code\u003e field in consensus params, enforcing a maximum length of 256 characters (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5511\"\u003e#5511\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[mempool]\u003c/code\u003e perf(mempool/cache): Optimize LRUTxCache.Remove to reduce lock contention and map access\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5244\"\u003e#5244\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[e2e]\u003c/code\u003e add support for testing different keytypes, including BLS\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/3513\"\u003e#3513\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto]\u003c/code\u003e Reduce BLS signature size to 48 bytes by increasing pubkey size to\n192 bytes (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3624\"\u003e#3624\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[statesync]\u003c/code\u003e Add configurable \u003ccode\u003emax-snapshot-chunks\u003c/code\u003e parameter to validate max amount of chunks in a \u003ccode\u003eSnapshotResponse\u003c/code\u003e.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5549\"\u003e#5549\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(lp2p): make reactor queue configurable\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5662\"\u003e#5662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[cli]\u003c/code\u003e print lib-p2p peer id\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5667\"\u003e#5667\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e Add warning when go-libp2p transport is enabled, conveying that the setting\nshould only be activated if it can be enabled simultaneously for all validators\nand peer IDs have been predetermined and exchanged\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5692\"\u003e#5692\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(p2p): add adaptive sync for comet-p2p\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5705\"\u003e#5705\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFEATURES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(lp2p): implemented resource limiter (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5671\"\u003e#5671\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[p2p]\u003c/code\u003e feat(consensus): add adaptive sync blocksync-to-consensus ingestion (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/5633\"\u003e#5633\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c56d64ec53bd72dfd99a5b0f5cb3eaad224a7021\"\u003e\u003ccode\u003ec56d64e\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/01d5ea5ceea466cfe4a81c107269570c01c7c9a5\"\u003e\u003ccode\u003e01d5ea5\u003c/code\u003e\u003c/a\u003e test: add unit tests for TotalVotingPowerSafe (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5570\"\u003e#5570\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/5581\"\u003e#5581\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/bd517d2eb251e966aa192929cbc9afd1f7ae69c5\"\u003e\u003ccode\u003ebd517d2\u003c/code\u003e\u003c/a\u003e test: remove unnecessary loop variable capture\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/7c43155314c1ab52036814b1ffb702c2767b312a\"\u003e\u003ccode\u003e7c43155\u003c/code\u003e\u003c/a\u003e test: add coverage for TotalVotingPowerSafe\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/eeb4a59930a0407f7581c2214f2f44eae65085df\"\u003e\u003ccode\u003eeeb4a59\u003c/code\u003e\u003c/a\u003e fix test cases in validation\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/161f7ac9fcb14293fce10e8160f44e671c520953\"\u003e\u003ccode\u003e161f7ac\u003c/code\u003e\u003c/a\u003e fix tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/a4e41a11fe723ba7b659460dcec1215769b9dda7\"\u003e\u003ccode\u003ea4e41a1\u003c/code\u003e\u003c/a\u003e fix linter errors\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/26dc17f5a8b33efeb4865ce2503b7bc792bc6a78\"\u003e\u003ccode\u003e26dc17f\u003c/code\u003e\u003c/a\u003e Add ValidateBlock tests for median time\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/c36a8edb32bdb8f0661db47ce2e64cd17fe61e08\"\u003e\u003ccode\u003ec36a8ed\u003c/code\u003e\u003c/a\u003e fix verbs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/dcf7e3b4bceddc1d0e55d67d1ac80e85fd9ea87c\"\u003e\u003ccode\u003edcf7e3b\u003c/code\u003e\u003c/a\u003e add test and fix a test\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v0.38.17...v0.38.21\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.71.0 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.71.0...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/cli` from 26.1.4+incompatible to 29.2.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/0b9d1985dbf919678745f122b12b46f730b97d87\"\u003e\u003ccode\u003e0b9d198\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6764\"\u003e#6764\u003c/a\u003e from vvoland/update-docker\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9c9ec7358833bb3e5622a166673744fca7fefac4\"\u003e\u003ccode\u003e9c9ec73\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/client v0.2.2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/bab3e81e1d8874a2d4f26afc02225ee537d0b15d\"\u003e\u003ccode\u003ebab3e81\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/moby/api v1.53.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/2e64fc162ab632a530f7191cc6af65c22356ea0d\"\u003e\u003ccode\u003e2e64fc1\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6367\"\u003e#6367\u003c/a\u003e from thaJeztah/template_slicejoin\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/1f2ba2ac9d8c92870f7cce89dfa17d89d3375c19\"\u003e\u003ccode\u003e1f2ba2a\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6760\"\u003e#6760\u003c/a\u003e from thaJeztah/container_create_fix_error\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/e34a3422cc32c808d2e8b0e0ef51112d53fa896d\"\u003e\u003ccode\u003ee34a342\u003c/code\u003e\u003c/a\u003e templates: make \u0026quot;join\u0026quot; work with non-string slices and map values\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/a86356d42f918968579e670b51bc85dc45982a33\"\u003e\u003ccode\u003ea86356d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6763\"\u003e#6763\u003c/a\u003e from thaJeztah/bump_mapstructure\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/771660a17e56116eb32677a6d83c5210e5092194\"\u003e\u003ccode\u003e771660a\u003c/code\u003e\u003c/a\u003e vendor: github.com/go-viper/mapstructure/v2 v2.5.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/9cff36b35a828be8d137bc5de4983b7e3fef1614\"\u003e\u003ccode\u003e9cff36b\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/cli/issues/6762\"\u003e#6762\u003c/a\u003e from thaJeztah/bump_x_deps\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/commit/08ed2bc6e8bc49ad988ecd44633620a48fb10967\"\u003e\u003ccode\u003e08ed2bc\u003c/code\u003e\u003c/a\u003e cli/command/container: make injecting config.json failures a warning\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/cli/compare/v26.1.4...v29.2.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ethereum/go-ethereum` from 1.15.5 to 1.17.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/ethereum/go-ethereum/releases\"\u003egithub.com/ethereum/go-ethereum's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eEezo-Inlaid Circuitry (v1.17.0)\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003cp\u003eThis is a feature release, with all accumulated development from the last 3 months. See below for the highlights.\u003c/p\u003e\n\u003cp\u003eNote that this release contains multiple critical security fixes, as well as many bug fixes, and is recommended for all users. However, if you are cautious about upgrades, you can also install v1.16.9 which has just the critical security fixes. Specifically, this release fixes \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-689v-6xwf-5jf3\"\u003eCVE-2026-26313\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-2gjw-fg97-vg3r\"\u003eCVE-2026-26314\u003c/a\u003e, \u003ca href=\"https://github.com/ethereum/go-ethereum/security/advisories/GHSA-m6j8-rg6r-7mv8\"\u003eCVE-2026-26315\u003c/a\u003e.\u003c/p\u003e\n\u003cp\u003eWe recommend recreating your p2p node key after installing this update, which you can do by removing the \u003ccode\u003eDATADIR/geth/nodekey\u003c/code\u003e file before restarting geth. Note this will cause a change in the p2p node ID, which may break static peering setups.\u003c/p\u003e\n\u003ch2\u003eHighlights\u003c/h2\u003e\n\u003ch3\u003ePath-based Archive Node with Proofs\u003c/h3\u003e\n\u003cp\u003eThe path-based archive node can now serve proofs (via \u003ccode\u003eeth_getProof\u003c/code\u003e) for the state of older blocks.\u003c/p\u003e\n\u003cp\u003eYou can configure the block range that supports proving independently from other archive state availability. Specifically, you can use the \u003ccode\u003e--history.trienode\u003c/code\u003e command-line flag to set the amount of blocks for which tree nodes will be tracked.\u003c/p\u003e\n\u003cp\u003eThis feature is disabled by default. Note that state history cannot easily be recovered once deleted, as it can only be generated by processing blocks. However, you can enable trienode history (and/or state history) at any time to turn a full node into a partial archive node, keeping state from that point in time onwards.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32727\"\u003e#32727\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32621\"\u003e#32621\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33551\"\u003e#33551\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32981\"\u003e#32981\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33399\"\u003e#33399\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32913\"\u003e#32913\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33303\"\u003e#33303\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33584\"\u003e#33584\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33329\"\u003e#33329\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33681\"\u003e#33681\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33103\"\u003e#33103\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33098\"\u003e#33098\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33515\"\u003e#33515\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32247\"\u003e#32247\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eEraE History Support\u003c/h3\u003e\n\u003cp\u003eGeth now suports the \u003ca href=\"https://redirect.github.com/eth-clients/e2store-format-specs/pull/16\"\u003eEraE\u003c/a\u003e file format, an archival format for post-merge chain history.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32157\"\u003e#32157\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33827\"\u003e#33827\u003c/a\u003e\u003c/p\u003e\n\u003ch3\u003eOpenTelemetry Tracing\u003c/h3\u003e\n\u003cp\u003eOpenTelemetry tracing is now supported by the RPC server, including support for distributed tracing.\nWe have also added some tracing spans for block processing via the engine API, i.e. \u003ccode\u003eengine_newPayload\u003c/code\u003e.\u003c/p\u003e\n\u003cp\u003e\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33599\"\u003e#33599\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33452\"\u003e#33452\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003eAll Changes\u003c/h2\u003e\n\u003ch3\u003eGeth CLI\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003egeth version-check\u003c/code\u003e subcommand has been removed. This command checked the geth website for signed vulnerability notices, and would tell if updates are necessary  (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33498\"\u003e#33498\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThere is now a \u003ccode\u003e--miner.maxblobs\u003c/code\u003e command-line flag to set a limit on blobs included in built blocks (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33129\"\u003e#33129\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33302\"\u003e#33302\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eGeth now supports continuous profiling with Grafana Pyroscope (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33623\"\u003e#33623\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA rare bug that could halt block production in \u003ccode\u003egeth --dev\u003c/code\u003e mode was fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33146\"\u003e#33146\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA new \u003ccode\u003e--rpc.rangelimit\u003c/code\u003e flag configures the maximum block range for \u003ccode\u003eeth_getLogs\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33163\"\u003e#33163\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --exitwhensynced\u003c/code\u003e will now set the \u003ccode\u003efinalized\u003c/code\u003e and \u003ccode\u003esafe\u003c/code\u003e block (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33038\"\u003e#33038\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003egeth --ethstats\u003c/code\u003e now reports the newPayload processing time to the stats server (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33395\"\u003e#33395\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eA lot of minor issues in Geth's command-line flag processing have been fixed (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33379\"\u003e#33379\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33338\"\u003e#33338\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33330\"\u003e#33330\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32999\"\u003e#32999\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33279\"\u003e#33279\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33252\"\u003e#33252\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eevm blocktest\u003c/code\u003e command can now read filenames from stdin when no path is provided (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/32824\"\u003e#32824\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFork Implementation\u003c/h3\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cf3d3ba4f7062fd2bbf2bda10972d528974e876\"\u003e\u003ccode\u003e0cf3d3b\u003c/code\u003e\u003c/a\u003e version: release go-ethereum v1.17.0 stable\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/9b78f45e337f01e66b505c35b74415751b2a0a28\"\u003e\u003ccode\u003e9b78f45\u003c/code\u003e\u003c/a\u003e crypto/secp256k1: fix coordinate check\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c709c19b40f4b6655d7944c3fb0c36a14c6774d6\"\u003e\u003ccode\u003ec709c19\u003c/code\u003e\u003c/a\u003e eth/catalyst: add initial OpenTelemetry tracing for newPayload (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33521\"\u003e#33521\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/550ca91b179493e5c0394ee644efed3deefb890e\"\u003e\u003ccode\u003e550ca91\u003c/code\u003e\u003c/a\u003e consensus/misc: hardening header verification (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33860\"\u003e#33860\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/a4b3898f9041fd7c77130dc17ba2b80441a998af\"\u003e\u003ccode\u003ea4b3898\u003c/code\u003e\u003c/a\u003e internal/telemetry: don't create internal spans without parents (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33780\"\u003e#33780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/0cba803fbafb12e9daaea53b76de847842ab3055\"\u003e\u003ccode\u003e0cba803\u003c/code\u003e\u003c/a\u003e eth/protocols/eth, eth/protocols/snap: delayed p2p message decoding (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33835\"\u003e#33835\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ad88b68a467b6b3cb9d6a8a24f0ec74e8aa77565\"\u003e\u003ccode\u003ead88b68\u003c/code\u003e\u003c/a\u003e internal/download: show progress bar only if server gives length (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33842\"\u003e#33842\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/c50e5edfafe408d911f3cdd2191a6808dc95cb42\"\u003e\u003ccode\u003ec50e5ed\u003c/code\u003e\u003c/a\u003e cmd/geth, internal/telemetry: wire OpenTelemetry tracing via CLI flags (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33484\"\u003e#33484\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/d8b92cb9e60fc8785c84f1afb35e64c9312eb35d\"\u003e\u003ccode\u003ed8b92cb\u003c/code\u003e\u003c/a\u003e rpc,internal/telemetry: fix deferred spanEnd to capture errors via pointer (#...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ethereum/go-ethereum/commit/ac85a6f25449a7b96505637e18c988b3142d47bf\"\u003e\u003ccode\u003eac85a6f\u003c/code\u003e\u003c/a\u003e rlp: add back Iterator.Count, with fixes (\u003ca href=\"https://redirect.github.com/ethereum/go-ethereum/issues/33841\"\u003e#33841\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/ethereum/go-ethereum/compare/v1.15.5...v1.17.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/go-viper/mapstructure/v2` from 2.2.1 to 2.4.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/go-viper/mapstructure/releases\"\u003egithub.com/go-viper/mapstructure/v2's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.4.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003erefactor: replace interface{} with any by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/115\"\u003ego-viper/mapstructure#115\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.0 to 3.29.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/114\"\u003ego-viper/mapstructure#114\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGeneric tests by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/118\"\u003ego-viper/mapstructure#118\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix godoc reference link in README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/107\"\u003ego-viper/mapstructure#107\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add StringToTimeLocationHookFunc to convert strings to *time.Location by \u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add back previous StringToSlice as a weak function by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/119\"\u003ego-viper/mapstructure#119\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ErfanMomeniii\"\u003e\u003ccode\u003e@​ErfanMomeniii\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/117\"\u003ego-viper/mapstructure#117\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.3.0...v2.4.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.3.0\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.1.7 to 4.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/46\"\u003ego-viper/mapstructure#46\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.0 to 6.1.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/47\"\u003ego-viper/mapstructure#47\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[enhancement] Add check for \u003ccode\u003ereflect.Value\u003c/code\u003e in \u003ccode\u003eComposeDecodeHookFunc\u003c/code\u003e by \u003ca href=\"https://github.com/mahadzaryab1\"\u003e\u003ccode\u003e@​mahadzaryab1\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/52\"\u003ego-viper/mapstructure#52\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.0.2 to 5.1.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/51\"\u003ego-viper/mapstructure#51\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/checkout from 4.2.0 to 4.2.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/50\"\u003ego-viper/mapstructure#50\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.1.0 to 5.2.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/55\"\u003ego-viper/mapstructure#55\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.2.0 to 5.3.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/58\"\u003ego-viper/mapstructure#58\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: add Go 1.24 to the test matrix by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/74\"\u003ego-viper/mapstructure#74\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.1.1 to 6.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/72\"\u003ego-viper/mapstructure#72\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 6.5.0 to 6.5.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/76\"\u003ego-viper/mapstructure#76\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.3.0 to 5.4.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/78\"\u003ego-viper/mapstructure#78\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add decode hook for netip.Prefix by \u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdates by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/86\"\u003ego-viper/mapstructure#86\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 2.13.4 to 3.28.15 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/87\"\u003ego-viper/mapstructure#87\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.4.0 to 5.5.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/93\"\u003ego-viper/mapstructure#93\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.15 to 3.28.17 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/92\"\u003ego-viper/mapstructure#92\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.17 to 3.28.19 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/97\"\u003ego-viper/mapstructure#97\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump ossf/scorecard-action from 2.4.1 to 2.4.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/96\"\u003ego-viper/mapstructure#96\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate README.md by \u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd omitzero tag. by \u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse error structs instead of duplicated strings by \u003ca href=\"https://github.com/m1k1o\"\u003e\u003ccode\u003e@​m1k1o\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/102\"\u003ego-viper/mapstructure#102\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.28.19 to 3.29.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/101\"\u003ego-viper/mapstructure#101\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efeat: add common error interface by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/105\"\u003ego-viper/mapstructure#105\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate linter by \u003ca href=\"https://github.com/sagikazarmark\"\u003e\u003ccode\u003e@​sagikazarmark\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/106\"\u003ego-viper/mapstructure#106\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFeature allow unset pointer by \u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/tklauser\"\u003e\u003ccode\u003e@​tklauser\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/85\"\u003ego-viper/mapstructure#85\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/peczenyj\"\u003e\u003ccode\u003e@​peczenyj\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/90\"\u003ego-viper/mapstructure#90\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Crystalix007\"\u003e\u003ccode\u003e@​Crystalix007\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/98\"\u003ego-viper/mapstructure#98\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/rostislaved\"\u003e\u003ccode\u003e@​rostislaved\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/pull/80\"\u003ego-viper/mapstructure#80\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\"\u003ehttps://github.com/go-viper/mapstructure/compare/v2.2.1...v2.3.0\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b9794a5f0e73d425210d6614ed833067029155f5\"\u003e\u003ccode\u003eb9794a5\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/119\"\u003e#119\u003c/a\u003e from go-viper/string-to-weak-slice\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17cdcb0741054e2a33938adf6bd1f2a5c0aa8f30\"\u003e\u003ccode\u003e17cdcb0\u003c/code\u003e\u003c/a\u003e feat: add back previous StringToSlice as a weak function\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/3caca3614c3ab2c5b5d359c44fdcd72058887b19\"\u003e\u003ccode\u003e3caca36\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/117\"\u003e#117\u003c/a\u003e from ErfanMomeniii/main\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/9a861bc115f2b54ed4e494662f29c172d9ef046a\"\u003e\u003ccode\u003e9a861bc\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/107\"\u003e#107\u003c/a\u003e from peczenyj/patch-2\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/86ed5b59da0615fb8c3a413f401cdf0231f1234c\"\u003e\u003ccode\u003e86ed5b5\u003c/code\u003e\u003c/a\u003e refactor: update\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/ace5b4e8b3dec99468ffa9498e42fb09d177b0a6\"\u003e\u003ccode\u003eace5b4e\u003c/code\u003e\u003c/a\u003e chore: add interface any linter\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/1a4f1aef38bfa8549762aaf42c7c18a5d268e76e\"\u003e\u003ccode\u003e1a4f1ae\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/go-viper/mapstructure/issues/118\"\u003e#118\u003c/a\u003e from go-viper/generic-tests\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/a2689090ed4348033c36724d866faf1f911a9f63\"\u003e\u003ccode\u003ea268909\u003c/code\u003e\u003c/a\u003e fix: lint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/17f1fd44eb7606b109c9bb017c0a1c6d3e93b5cd\"\u003e\u003ccode\u003e17f1fd4\u003c/code\u003e\u003c/a\u003e test: add more comments\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/go-viper/mapstructure/commit/b48c8566836bf291bfee2b217d51fc36e8e61f6f\"\u003e\u003ccode\u003eb48c856\u003c/code\u003e\u003c/a\u003e test: expand tests\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/go-viper/mapstructure/compare/v2.2.1...v2.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/hashicorp/go-getter` from 1.7.5 to 1.7.9\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/hashicorp/go-getter/releases\"\u003egithub.com/hashicorp/go-getter's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.7.9\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eSpeed up XZ decompression by 5x with bufio wrapper by \u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix CI Workflow by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/522\"\u003ehashicorp/go-getter#522\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003etest: Remove use of \u0026quot;mitchellh/go-testing-interface\u0026quot; for stdlib by \u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: url redact of multiple sshkey by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/528\"\u003ehashicorp/go-getter#528\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ePublish arm binaries by \u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix errcheck lint errors and run it as part of pr checks by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix additional lint errors and increase linter scope by \u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/531\"\u003ehashicorp/go-getter#531\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-3728 enabling dependabot by \u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003efix: go-getter subdir paths by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/540\"\u003ehashicorp/go-getter#540\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/vsarunas\"\u003e\u003ccode\u003e@​vsarunas\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/520\"\u003ehashicorp/go-getter#520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/jrasell\"\u003e\u003ccode\u003e@​jrasell\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/523\"\u003ehashicorp/go-getter#523\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/sethvargo\"\u003e\u003ccode\u003e@​sethvargo\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/525\"\u003ehashicorp/go-getter#525\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/abhijeetviswa\"\u003e\u003ccode\u003e@​abhijeetviswa\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/530\"\u003ehashicorp/go-getter#530\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/KaushikiAnand\"\u003e\u003ccode\u003e@​KaushikiAnand\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/529\"\u003ehashicorp/go-getter#529\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.8...v1.7.9\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.8\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003esec: fix s3 and gcs host checks by \u003ca href=\"https://github.com/dduzgun-security\"\u003e\u003ccode\u003e@​dduzgun-security\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/512\"\u003ehashicorp/go-getter#512\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.7...v1.7.8\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.7\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClean up git repo on disk when the ref checkout fails by \u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e[COMPLIANCE] Add Copyright and License Headers by \u003ca href=\"https://github.com/hashicorp-copywrite\"\u003e\u003ccode\u003e@​hashicorp-copywrite\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/409\"\u003ehashicorp/go-getter#409\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CODEOWNERS file in .github/CODEOWNERS by \u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIND-1804 Bump up dependencies to remediate vulnerabiities by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating arguments in github release CI by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/514\"\u003ehashicorp/go-getter#514\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdating .goreleaser.yml file with valid version by \u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/515\"\u003ehashicorp/go-getter#515\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/james-warren0\"\u003e\u003ccode\u003e@​james-warren0\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/504\"\u003ehashicorp/go-getter#504\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mukeshjc\"\u003e\u003ccode\u003e@​mukeshjc\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/505\"\u003ehashicorp/go-getter#505\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/mohanmanikanta2299\"\u003e\u003ccode\u003e@​mohanmanikanta2299\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/513\"\u003ehashicorp/go-getter#513\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\"\u003ehttps://github.com/hashicorp/go-getter/compare/v1.7.6...v1.7.7\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev1.7.6\u003c/h2\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003efix: Avoid panic when s3 URL is invalid by \u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/liamg\"\u003e\u003ccode\u003e@​liamg\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/pull/501\"\u003ehashicorp/go-getter#501\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/e70221100018573cdc74411c95c19b2a372f6728\"\u003e\u003ccode\u003ee702211\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/532\"\u003e#532\u003c/a\u003e from hashicorp/dependabot/github_actions/actions-8948...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/df0a14fa67f2921eabff8fbdb51445ac03daeb87\"\u003e\u003ccode\u003edf0a14f\u003c/code\u003e\u003c/a\u003e [chore] : Bump the actions group with 8 updates\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/87541b2501c00df5eaedea6acc61a2a4a4efa5b7\"\u003e\u003ccode\u003e87541b2\u003c/code\u003e\u003c/a\u003e fix: go-getter subdir paths (\u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/540\"\u003e#540\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/37130302313c9294df898ac96e2565a65369ec68\"\u003e\u003ccode\u003e3713030\u003c/code\u003e\u003c/a\u003e [Compliance] - PR Template Changes Required\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/af2dd3ca2764281bf6b7468e05028a8b114c63a7\"\u003e\u003ccode\u003eaf2dd3c\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/hashicorp/go-getter/issues/529\"\u003e#529\u003c/a\u003e from hashicorp/dependabot-intge\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/bf526297fa4cd429fcf31da9e4a6bf6a0b512026\"\u003e\u003ccode\u003ebf52629\u003c/code\u003e\u003c/a\u003e updating dependabot.yml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/1f63e10d3b421544473bf52103b41eb423e2c897\"\u003e\u003ccode\u003e1f63e10\u003c/code\u003e\u003c/a\u003e changelog added, updated dependabot.yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/45af45918c6958be58f87d1576ac4a0b32f7eb4b\"\u003e\u003ccode\u003e45af459\u003c/code\u003e\u003c/a\u003e fix additional lint errors and increase linter scope\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/c8c6aba0f7ad4e3937ef7cfcb50627520e498252\"\u003e\u003ccode\u003ec8c6aba\u003c/code\u003e\u003c/a\u003e fix errcheck lint errors and run it as part of pr checks\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/hashicorp/go-getter/commit/9b76f983e594375fdef9e231822c805c82ec9ed7\"\u003e\u003ccode\u003e9b76f98\u003c/code\u003e\u003c/a\u003e copywrite header added\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/hashicorp/go-getter/compare/v1.7.5...v1.7.9\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/opencontainers/runc` from 1.1.14 to 1.2.8\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/releases\"\u003egithub.com/opencontainers/runc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003erunc v1.2.8 -- \u0026quot;鳥籠の中に囚われた屈辱を\u0026quot;\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e[!NOTE]\nSome vendors were given a pre-release version of this release.\nThis public release includes two extra patches to fix regressions\ndiscovered very late during the embargo period and were thus not\nincluded in the pre-release versions. Please update to this version.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003cp\u003eThis release contains fixes for three high-severity security\nvulnerabilities in runc (\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e, and\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e). All three vulnerabilities ultimately allow (through\ndifferent methods) for full container breakouts by bypassing runc's\nrestrictions for writing to arbitrary \u003ccode\u003e/proc\u003c/code\u003e files.\u003c/p\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e exploits an issue with how masked paths are implemented in\nrunc. When masking files, runc will bind-mount the container's \u003ccode\u003e/dev/null\u003c/code\u003e\ninode on top of the file. However, if an attacker can replace \u003ccode\u003e/dev/null\u003c/code\u003e\nwith a symlink to some other procfs file, runc will instead bind-mount the\nsymlink target read-write. This issue affected all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-qw9x-cqr3-wc7r\"\u003eCVE-2025-52565\u003c/a\u003e is very similar in concept and application to\n\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-9493-h29p-rfm2\"\u003eCVE-2025-31133\u003c/a\u003e, except that it exploits a flaw in \u003ccode\u003e/dev/console\u003c/code\u003e\nbind-mounts. When creating the \u003ccode\u003e/dev/console\u003c/code\u003e bind-mount (to \u003ccode\u003e/dev/pts/$n\u003c/code\u003e),\nif an attacker replaces \u003ccode\u003e/dev/pts/$n\u003c/code\u003e with a symlink then runc will\nbind-mount the symlink target over \u003ccode\u003e/dev/console\u003c/code\u003e. This issue affected all\nversions of runc \u0026gt;= 1.0.0-rc3.\u003c/p\u003e\n\u003c/li\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-cgrx-mc8f-2prm\"\u003eCVE-2025-52881\u003c/a\u003e is a more sophisticated variant of \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e,\nwhich was a flaw that allowed an attacker to trick runc into writing the LSM\nprocess labels for a container process into a dummy tmpfs file and thus not\napply the correct LSM labels to the container process. The mitigation we\napplied for \u003ca href=\"https://github.com/opencontainers/runc/security/advisories/GHSA-fh74-hm69-rqjw\"\u003eCVE-2019-19921\u003c/a\u003e was fairly limited and effectively only caused\nrunc to verify that when we write LSM labels that those labels are actual\nprocfs files. This issue affects all known runc versions.\u003c/p\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eStatic Linking Notices\u003c/h3\u003e\n\u003cp\u003eThe \u003ccode\u003erunc\u003c/code\u003e binary distributed with this release are \u003cem\u003estatically linked\u003c/em\u003e with\nthe following \u003ca href=\"https://www.gnu.org/licenses/old-licenses/lgpl-2.1.en.html\"\u003eGNU LGPL-2.1\u003c/a\u003e licensed libraries, with \u003ccode\u003erunc\u003c/code\u003e acting\nas a \u0026quot;work that uses the Library\u0026quot;:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/seccomp/libseccomp\"\u003elibseccomp\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/opencontainers/runc/blob/main/CHANGELOG.md\"\u003egithub.com/opencontainers/runc's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.2.8] - 2025-11-05\u003c/h2\u003e\n\u003cblockquote\u003e\n\u003cp\u003e鳥籠の中に囚われた屈辱を\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003ch3\u003eSecurity\u003c/h3\u003e\n\u003cp\u003eThis release includes fixes for the following high-severity security issues:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\n\u003cp\u003e\u003ca href=\"https://github.co...\n\n_Description has been truncated_","html_url":"https://github.com/PreFrontalCorporate/gaia/pull/108","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/PreFrontalCorporate%2Fgaia/issues/108","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/108/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-03-19T01:30:10.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4098655043","node_id":"PR_kwDONO4O987Ltub_","number":19,"state":"closed","title":"chore(deps): bump the go_modules group across 1 directory with 8 updates","user":"dependabot[bot]","labels":["dependencies","go","M-stale"],"assignees":[],"locked":false,"comments_count":3,"pull_request":true,"closed_at":"2026-05-04T03:17:38.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T01:30:10.000Z","updated_at":"2026-05-04T03:17:48.000Z","time_to_close":3980848,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"chore(deps): bump","group_name":"go_modules","update_count":8,"packages":[{"name":"github.com/consensys/gnark-crypto","old_version":"0.18.0","new_version":"0.18.1","repository_url":"https://github.com/consensys/gnark-crypto"},{"name":"github.com/docker/docker","old_version":"27.5.1+incompatible","new_version":"28.0.0+incompatible","repository_url":"https://github.com/docker/docker"},{"name":"github.com/quic-go/quic-go","old_version":"0.46.0","new_version":"0.57.0","repository_url":"https://github.com/quic-go/quic-go"},{"name":"github.com/quic-go/webtransport-go","old_version":"0.8.0","new_version":"0.10.0","repository_url":"https://github.com/quic-go/webtransport-go"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"},{"name":"go.opentelemetry.io/otel/sdk","old_version":"1.34.0","new_version":"1.40.0","repository_url":"https://github.com/open-telemetry/opentelemetry-go"},{"name":"google.golang.org/grpc","old_version":"1.69.4","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 7 updates in the /tests directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [github.com/consensys/gnark-crypto](https://github.com/consensys/gnark-crypto) | `0.18.0` | `0.18.1` |\n| [github.com/docker/docker](https://github.com/docker/docker) | `27.5.1+incompatible` | `28.0.0+incompatible` |\n| [github.com/quic-go/quic-go](https://github.com/quic-go/quic-go) | `0.46.0` | `0.57.0` |\n| [github.com/quic-go/webtransport-go](https://github.com/quic-go/webtransport-go) | `0.8.0` | `0.10.0` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n| [go.opentelemetry.io/otel/sdk](https://github.com/open-telemetry/opentelemetry-go) | `1.34.0` | `1.40.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.69.4` | `1.79.3` |\n\n\nUpdates `github.com/consensys/gnark-crypto` from 0.18.0 to 0.18.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/consensys/gnark-crypto/releases\"\u003egithub.com/consensys/gnark-crypto's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.18.1\u003c/h2\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\"\u003ehttps://github.com/Consensys/gnark-crypto/compare/v0.18.0...v0.18.1\u003c/a\u003e\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/Consensys/gnark-crypto/blob/master/CHANGELOG.md\"\u003egithub.com/consensys/gnark-crypto's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[v0.18.1] - 2025-10-28\u003c/h2\u003e\n\u003ch3\u003eDocs\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eadd CHANGELOG for 0.18.1\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003ePerf\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003elimit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/Consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\n\u003c!-- raw HTML omitted --\u003e\u003c!-- raw HTML omitted --\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/fb04e95c3b2fca34f2cc773d3e8c1f930ede271a\"\u003e\u003ccode\u003efb04e95\u003c/code\u003e\u003c/a\u003e docs: add CHANGELOG for 0.18.1\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/Consensys/gnark-crypto/commit/0a4d04ae621bc19b6b40c6c7b8fa91f08b434533\"\u003e\u003ccode\u003e0a4d04a\u003c/code\u003e\u003c/a\u003e perf: limit memory allocation during Vector deserialization (\u003ca href=\"https://redirect.github.com/consensys/gnark-crypto/issues/759\"\u003e#759\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/consensys/gnark-crypto/compare/v0.18.0...v0.18.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/docker/docker` from 27.5.1+incompatible to 28.0.0+incompatible\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/docker/docker/releases\"\u003egithub.com/docker/docker's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev28.0.0\u003c/h2\u003e\n\u003ch1\u003e28.0.0\u003c/h1\u003e\n\u003cp\u003eFor a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/docker/cli/issues?q=is%3Aclosed+milestone%3A28.0.0\"\u003edocker/cli, 28.0.0 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/issues?q=is%3Aclosed+milestone%3A28.0.0\"\u003emoby/moby, 28.0.0 milestone\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDeprecated and removed features, see \u003ca href=\"https://github.com/docker/cli/blob/v28.0.0/docs/deprecated.md\"\u003eDeprecated Features\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eChanges to the Engine API, see \u003ca href=\"https://github.com/moby/moby/blob/v28.0.0/docs/api/version-history.md\"\u003eAPI version history\u003c/a\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eAdd ability to mount an image inside a container via \u003ccode\u003e--mount type=image\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48798\"\u003emoby/moby#48798\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eYou can also specify \u003ccode\u003e--mount type=image,image-subpath=[subpath],...\u003c/code\u003e option to mount a specific path from the image. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5755\"\u003edocker/cli#5755\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edocker images --tree\u003c/code\u003e now shows metadata badges. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5744\"\u003edocker/cli#5744\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edocker load\u003c/code\u003e, \u003ccode\u003edocker save\u003c/code\u003e, and \u003ccode\u003edocker history\u003c/code\u003e now support a \u003ccode\u003e--platform\u003c/code\u003e flag allowing you to choose a specific platform for single-platform operations on multi-platform images. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5331\"\u003edocker/cli#5331\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eOOMScoreAdj\u003c/code\u003e to \u003ccode\u003edocker service create\u003c/code\u003e and \u003ccode\u003edocker stack\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5145\"\u003edocker/cli#5145\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003edocker buildx prune\u003c/code\u003e now supports \u003ccode\u003ereserved-space\u003c/code\u003e, \u003ccode\u003emax-used-space\u003c/code\u003e, \u003ccode\u003emin-free-space\u003c/code\u003e and \u003ccode\u003ekeep-bytes\u003c/code\u003e filters. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48720\"\u003emoby/moby#48720\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWindows: Add support for running containerd as a child process of the daemon, instead of using a system-installed containerd. \u003ca href=\"https://redirect.github.com/moby/moby/pull/47955\"\u003emoby/moby#47955\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNetworking\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003edocker-proxy\u003c/code\u003e binary has been updated, older versions will not work with the updated \u003ccode\u003edockerd\u003c/code\u003e. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48132\"\u003emoby/moby#48132\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eClose a window in which the userland proxy (\u003ccode\u003edocker-proxy\u003c/code\u003e) could accept TCP connections, that would then fail after \u003ccode\u003eiptables\u003c/code\u003e NAT rules were set up.\u003c/li\u003e\n\u003cli\u003eThe executable \u003ccode\u003erootlesskit-docker-proxy\u003c/code\u003e is no longer used, it has been removed from the build and distribution.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eDNS nameservers read from the host's \u003ccode\u003e/etc/resolv.conf\u003c/code\u003e are now always accessed from the host's network namespace. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48290\"\u003emoby/moby#48290\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eWhen the host's \u003ccode\u003e/etc/resolv.conf\u003c/code\u003e contains no nameservers and there are no \u003ccode\u003e--dns\u003c/code\u003e overrides, Google's DNS servers are no longer used, apart from by the default bridge network and in build containers.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eContainer interfaces in bridge and macvlan networks now use randomly generated MAC addresses. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48808\"\u003emoby/moby#48808\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eGratuitous ARP / Neighbour Advertisement messages will be sent when the interfaces are started so that, when IP addresses are reused, they're associated with the newly generated MAC address.\u003c/li\u003e\n\u003cli\u003eIPv6 addresses in the default bridge network are now IPAM-assigned, rather than being derived from the MAC address.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eThe deprecated OCI \u003ccode\u003eprestart\u003c/code\u003e hook is now only used by build containers. For other containers, network interfaces are added to the network namespace after task creation is complete, before the container task is started. \u003ca href=\"https://redirect.github.com/moby/moby/pull/47406\"\u003emoby/moby#47406\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a new \u003ccode\u003egw-priority\u003c/code\u003e option to \u003ccode\u003edocker run\u003c/code\u003e, \u003ccode\u003edocker container create\u003c/code\u003e, and \u003ccode\u003edocker network connect\u003c/code\u003e. This option will be used by the Engine to determine which network provides the default gateway for a container. On \u003ccode\u003edocker run\u003c/code\u003e, this option is only available through the extended \u003ccode\u003e--network\u003c/code\u003e syntax. \u003ca href=\"https://redirect.github.com/docker/cli/pull/5664\"\u003edocker/cli#5664\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd a new netlabel \u003ccode\u003ecom.docker.network.endpoint.ifname\u003c/code\u003e to customize the interface name used when connecting a container to a network. It's supported by all built-in network drivers on Linux. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49155\"\u003emoby/moby#49155\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eWhen a container is created with multiple networks specified, there's no guarantee on the order networks will be connected to the container. So, if a custom interface name uses the same prefix as the auto-generated names, for example \u003ccode\u003eeth\u003c/code\u003e, the container might fail to start.\u003c/li\u003e\n\u003cli\u003eThe recommended practice is to use a different prefix, for example \u003ccode\u003een0\u003c/code\u003e, or a numerical suffix high enough to never collide, for example \u003ccode\u003eeth100\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eThis label can be specified on \u003ccode\u003edocker network connect\u003c/code\u003e via the \u003ccode\u003e--driver-opt\u003c/code\u003e flag, for example \u003ccode\u003edocker network connect --driver-opt=com.docker.network.endpoint.ifname=foobar …\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003eOr via the long-form \u003ccode\u003e--network\u003c/code\u003e flag on \u003ccode\u003edocker run\u003c/code\u003e, for example \u003ccode\u003edocker run --network=name=bridge,driver-opt=com.docker.network.endpoint.ifname=foobar …\u003c/code\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eIf a custom network driver reports capability \u003ccode\u003eGwAllocChecker\u003c/code\u003e then, before a network is created, it will get a \u003ccode\u003eGwAllocCheckerRequest\u003c/code\u003e with the network's options. The custom driver may then reply that no gateway IP address should be allocated. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49372\"\u003emoby/moby#49372\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ePort publishing in bridge networks\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003edockerd\u003c/code\u003e now requires \u003ccode\u003eipset\u003c/code\u003e support in the Linux kernel. \u003ca href=\"https://redirect.github.com/moby/moby/pull/48596\"\u003emoby/moby#48596\u003c/a\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eiptables\u003c/code\u003e and \u003ccode\u003eip6tables\u003c/code\u003e rules used to implement port publishing and network isolation have been extensively modified. This enables some of the following functional changes, and is a first step in refactoring to enable native \u003ccode\u003enftables\u003c/code\u003e support in a future release. \u003ca href=\"https://redirect.github.com/moby/moby/issues/48815\"\u003emoby/moby#48815\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eIf it becomes necessary to downgrade to an earlier version of the daemon, some manual cleanup of the new rules will be necessary. The simplest and surest approach is to reboot the host, or use \u003ccode\u003eiptables -F\u003c/code\u003e and \u003ccode\u003eip6tables -F\u003c/code\u003e to flush all existing \u003ccode\u003eiptables\u003c/code\u003e rules from the \u003ccode\u003efilter\u003c/code\u003e table before starting the older version of the daemon. When that is not possible, run the following commands as root:\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eiptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eiptables -D FORWARD -m set --match-set docker-ext-bridges-v4 dst -j DOCKER; ip6tables -D FORWARD -m set --match-set docker-ext-bridges-v6 dst -j DOCKER\u003c/code\u003e\u003c/li\u003e\n\u003cli\u003eIf you were previously running with the iptables filter-FORWARD policy set to \u003ccode\u003eACCEPT\u003c/code\u003e and need to restore access to unpublished ports, also delete per-bridge-network rules from the \u003ccode\u003eDOCKER\u003c/code\u003e chains. For example, \u003ccode\u003eiptables -D DOCKER ! -i docker0 -o docker0 -j DROP\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eFix a security issue that was allowing remote hosts to connect directly to a container on its published ports. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49325\"\u003emoby/moby#49325\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFix a security issue that was allowing neighbor hosts to connect to ports mapped on a loopback address. \u003ca href=\"https://redirect.github.com/moby/moby/pull/49325\"\u003emoby/moby#49325\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/af898abe44662d9554fb15ee4d4a7307f1b8e315\"\u003e\u003ccode\u003eaf898ab\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49495\"\u003e#49495\u003c/a\u003e from vvoland/update-buildkit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/d67f035d31bab71be3ae7dcaacba41f5a98aad11\"\u003e\u003ccode\u003ed67f035\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/buildkit v0.20.0\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/00ab386b5a2ebcf85b6a03b800f593c3a140c6a8\"\u003e\u003ccode\u003e00ab386\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49491\"\u003e#49491\u003c/a\u003e from vvoland/update-buildkit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/1fde8c46159cb41f584c01551f83cc21ecf924d9\"\u003e\u003ccode\u003e1fde8c4\u003c/code\u003e\u003c/a\u003e builder-next: fix cdi manager\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/cde9f0752e9c9f63b459e0247ff7df0b35488af3\"\u003e\u003ccode\u003ecde9f07\u003c/code\u003e\u003c/a\u003e vendor: github.com/moby/buildkit v0.20.0-rc3\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/89e1429b65f194b25fe2e31088a4c4e69a651a47\"\u003e\u003ccode\u003e89e1429\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49490\"\u003e#49490\u003c/a\u003e from thaJeztah/dockerfile_linting\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/b2b55903d0bb54e11bfe22204c1e0b73627943eb\"\u003e\u003ccode\u003eb2b5590\u003c/code\u003e\u003c/a\u003e Dockerfile: fix linting warnings\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/62bc5979908f152a8929ce44927cbdd929bf53ea\"\u003e\u003ccode\u003e62bc597\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49480\"\u003e#49480\u003c/a\u003e from thaJeztah/docs_api_1.48\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/670cd81423932b3e9103f0893c5d5e63a079ae58\"\u003e\u003ccode\u003e670cd81\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/docker/docker/issues/49485\"\u003e#49485\u003c/a\u003e from vvoland/c8d-list-panic\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/moby/moby/commit/a3628f3f8e806ede250e2c95f6757070c9fb56e4\"\u003e\u003ccode\u003ea3628f3\u003c/code\u003e\u003c/a\u003e docs/api: add documentation for API v1.48\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/docker/docker/compare/v27.5.1...v28.0.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/quic-go/quic-go` from 0.46.0 to 0.57.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quic-go/quic-go/releases\"\u003egithub.com/quic-go/quic-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.57.0\u003c/h2\u003e\n\u003cp\u003eThis release contains a fix for CVE-2025-64702 by reworking the HTTP/3 header processing logic:\u003c/p\u003e\n\u003cul\u003e\n\u003cli\u003eBoth client and server now send their respective header size constraints using the SETTINGS_MAX_FIELD_SECTION_SIZE setting: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5431\"\u003e#5431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eFor any QPACK-related errors, the correct error code (QPACK_DECOMPRESSION_FAILED) is now used: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5439\"\u003e#5439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eQPACK header parsing is now incremental (instead of parsing all headers at once), which is ~5-10% faster and reduces allocations: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5435\"\u003e#5435\u003c/a\u003e (and \u003ca href=\"https://redirect.github.com/quic-go/qpack/pull/67\"\u003equic-go/qpack#67\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe server now sends a 431 status code (Request Header Fields Too Large) when encountering HTTP header fields exceeding the size constraint: \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5452\"\u003e#5452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e \u003c/p\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ehttp3: \u003ccode\u003eTransport.MaxResponseBytes\u003c/code\u003e is now an \u003ccode\u003eint\u003c/code\u003e (before: \u003ccode\u003eint64\u003c/code\u003e): \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5433\"\u003e#5433\u003c/a\u003e\n \u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNotable Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eqlogwriter: fix storing of event schemas (this prevented qlog event logging from working for HTTP/3): \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5430\"\u003e#5430\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: errors sending the request are now ignored, instead, the response from the server is read (thereby allowing the client to read the status code, for example): \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5432\"\u003e#5432\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5426\"\u003equic-go/quic-go#5426\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eqlogwriter: fix storing of event schemas by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5430\"\u003equic-go/quic-go#5430\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: send SETTINGS_MAX_FIELD_SECTION_SIZE in the SETTINGS frame by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5431\"\u003equic-go/quic-go#5431\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: read response after encountering error sending the request by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5432\"\u003equic-go/quic-go#5432\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: make Transport.MaxResponseBytes an int by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5433\"\u003equic-go/quic-go#5433\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: add a benchmark for header parsing by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5435\"\u003equic-go/quic-go#5435\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate qpack to v0.6.0 by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5434\"\u003equic-go/quic-go#5434\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: use QPACK_DECOMPRESSION_FAILED for QPACK errors by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5439\"\u003equic-go/quic-go#5439\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eadd documentation for Conn.NextConnection by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5442\"\u003equic-go/quic-go#5442\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eackhandler: don’t generate an immediate ACK for the first packet by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5447\"\u003equic-go/quic-go#5447\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003edon’t arm connection timer for connection ID retirement by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5449\"\u003equic-go/quic-go#5449\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: add nodepass to list of projects by \u003ca href=\"https://github.com/yosebyte\"\u003e\u003ccode\u003e@​yosebyte\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5448\"\u003equic-go/quic-go#5448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eqlogwriter: use synctest to make tests deterministic by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5454\"\u003equic-go/quic-go#5454\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ehttp3: limit size of decompressed headers by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5452\"\u003equic-go/quic-go#5452\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNew Contributors\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/yosebyte\"\u003e\u003ccode\u003e@​yosebyte\u003c/code\u003e\u003c/a\u003e made their first contribution in \u003ca href=\"https://redirect.github.com/quic-go/quic-go/pull/5448\"\u003equic-go/quic-go#5448\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/quic-go/quic-go/compare/v0.56.0...v0.57.0\"\u003ehttps://github.com/quic-go/quic-go/compare/v0.56.0...v0.57.0\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev0.56.0\u003c/h2\u003e\n\u003cp\u003eThis release introduces qlog support for HTTP/3 (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5367\"\u003e#5367\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5372\"\u003e#5372\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5374\"\u003e#5374\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5375\"\u003e#5375\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5376\"\u003e#5376\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5381\"\u003e#5381\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5383\"\u003e#5383\u003c/a\u003e).\u003c/p\u003e\n\u003cp\u003eFor this, we completely changed how connection tracing works. Instead of a general-purpose \u003ccode\u003elogging.ConnectionTracer\u003c/code\u003e (which we removed entirely), we now have a qlog-specific tracer (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5356\"\u003e#5356\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5417\"\u003e#5417\u003c/a\u003e). quic-go users can now implement their own qlog events.\u003c/p\u003e\n\u003cp\u003eIt also removes the Prometheus-based metrics collection. Please comment on the tracking issue (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5294\"\u003e#5294\u003c/a\u003e) if you rely on metrics and are interested in seeing metrics brought back in a future release.\u003c/p\u003e\n\u003ch2\u003eNotable Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003ereplaced the unmaintained gojay with a custom, performance-optimized JSON encoder (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5353\"\u003e#5353\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5371\"\u003e#5371\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/5b2d2129f8315da41e01eff0a847ab38a34e83a8\"\u003e\u003ccode\u003e5b2d212\u003c/code\u003e\u003c/a\u003e http3: limit size of decompressed headers (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5452\"\u003e#5452\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/e80b378bc2674934ecc92225af66e6a0fbd3f703\"\u003e\u003ccode\u003ee80b378\u003c/code\u003e\u003c/a\u003e qlogwriter: use synctest to make tests deterministic (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5454\"\u003e#5454\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/d43c5894f8522279fc2cda80ba9a59c4e75d5e72\"\u003e\u003ccode\u003ed43c589\u003c/code\u003e\u003c/a\u003e README: add nodepass to list of projects (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5448\"\u003e#5448\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/ca2835de95c75aaddf20eca9008625f32907c940\"\u003e\u003ccode\u003eca2835d\u003c/code\u003e\u003c/a\u003e don’t arm connection timer for connection ID retirement (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5449\"\u003e#5449\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/e84ebae666e9a2f4f1141ec89821225778569e62\"\u003e\u003ccode\u003ee84ebae\u003c/code\u003e\u003c/a\u003e ackhandler: don’t generate an immediate ACK for the first packet (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5447\"\u003e#5447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/d4d168f0f09377779ddeaabb4437b8cc247ef062\"\u003e\u003ccode\u003ed4d168f\u003c/code\u003e\u003c/a\u003e add documentation for Conn.NextConnection (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5442\"\u003e#5442\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/4cdebbea6cf8e54def24906ee91389cb60705709\"\u003e\u003ccode\u003e4cdebbe\u003c/code\u003e\u003c/a\u003e http3: use QPACK_DECOMPRESSION_FAILED for QPACK errors (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5439\"\u003e#5439\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/b7886d5c901700febc41c739bd93851eac5d315e\"\u003e\u003ccode\u003eb7886d5\u003c/code\u003e\u003c/a\u003e update qpack to v0.6.0 (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5434\"\u003e#5434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/2fc9705d14a5a5a269482544c032fcc53d696d92\"\u003e\u003ccode\u003e2fc9705\u003c/code\u003e\u003c/a\u003e http3: add a benchmark for header parsing (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5435\"\u003e#5435\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/quic-go/commit/dafdd6f9b2b04cd67cf27805bf44ea616ac8f251\"\u003e\u003ccode\u003edafdd6f\u003c/code\u003e\u003c/a\u003e http3: make Transport.MaxResponseBytes an int (\u003ca href=\"https://redirect.github.com/quic-go/quic-go/issues/5433\"\u003e#5433\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quic-go/quic-go/compare/v0.46.0...v0.57.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/quic-go/webtransport-go` from 0.8.0 to 0.10.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/quic-go/webtransport-go/releases\"\u003egithub.com/quic-go/webtransport-go's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev0.10.0\u003c/h2\u003e\n\u003cp\u003eThis release updates webtransport-go to use the new API introduced in \u003ca href=\"https://github.com/quic-go/quic-go/releases/tag/v0.59.0\"\u003equic-go v0.59.0\u003c/a\u003e (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/221\"\u003e#221\u003c/a\u003e): Instead of \u0026quot;hijacking\u0026quot; streams from the HTTP/3 layer, the underlying QUIC connection is now owned by WebTransport, and webtransport-go dispatches incoming streams to either the HTTP/3 layer or an existing or new WebTransport session.\u003c/p\u003e\n\u003ch2\u003eNew Features\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eImplemented \u003ca href=\"https://www.ietf.org/archive/id/draft-ietf-webtrans-http3-14.html#section-3.3\"\u003eApplication Protocol Negotiation\u003c/a\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/190\"\u003e#190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ca href=\"https://datatracker.ietf.org/doc/html/draft-ietf-quic-reliable-stream-reset-07\"\u003eQUIC Stream Resets with Partial Delivery\u003c/a\u003e is now used to enforce reliable delivery of the WebTransport stream header: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/239\"\u003e#239\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eBreaking Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003eSession.ConnectionState\u003c/code\u003e was renamed to \u003ccode\u003eSessionState\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/189\"\u003e#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eStreamID\u003c/code\u003e method was removed from \u003ccode\u003eStream\u003c/code\u003e, \u003ccode\u003eSendStream\u003c/code\u003e and \u003ccode\u003eReceiveStream\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/226\"\u003e#226\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eServer\u003c/code\u003e now embeds the \u003ccode\u003ehttp3.Server\u003c/code\u003e as a pointer (instead of by value): \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/215\"\u003e#215\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eOther Changes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe \u003ccode\u003eStream\u003c/code\u003e and the \u003ccode\u003eSendStream\u003c/code\u003e now expose a \u003ccode\u003eContext\u003c/code\u003e method: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/176\"\u003e#176\u003c/a\u003e (thanks to \u003ca href=\"https://github.com/Sicilica\"\u003e\u003ccode\u003e@​Sicilica\u003c/code\u003e\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eDelayed streams for already closed sessions are immediately reset: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/235\"\u003e#235\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eSession\u003c/code\u003e context now uses the request or dial context, allowing the application to attach values to the context: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/199\"\u003e#199\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eWhen a WebTransport session is closed, streams are reset using the \u003ccode\u003eWT_SESSION_GONE\u003c/code\u003e error. Stream \u003ccode\u003eRead\u003c/code\u003e and \u003ccode\u003eWrite\u003c/code\u003e now wait for the \u003ccode\u003eWT_CLOSE_SESSION\u003c/code\u003e capsule on the CONNECT stream to return a meaningful error: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/213\"\u003e#213\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eNotable Fixes\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eClosed sessions are now properly cleaned up: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/198\"\u003e#198\u003c/a\u003e (thanks to \u003ca href=\"https://github.com/rolaechea\"\u003e\u003ccode\u003e@​rolaechea\u003c/code\u003e\u003c/a\u003e), \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/230\"\u003e#230\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSession errors are now properly propagated to the stream \u003ccode\u003eRead\u003c/code\u003e and \u003ccode\u003eWrite\u003c/code\u003e calls: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/207\"\u003e#207\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe length limit for \u003ccode\u003eWT_CLOSE_SESSION\u003c/code\u003e capsules is now enforced: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/202\"\u003e#202\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe dial timeout is now respected while waiting for the server's HTTP/3 settings: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/216\"\u003e#216\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eA 10ms deadline is applied before attempting the \u003ccode\u003eWT_CLOSE_SESSION\u003c/code\u003e capsule, preventing \u003ccode\u003eSession.Close\u003c/code\u003e from blocking any longer than 10ms: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/224\"\u003e#224\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eerrors.Is\u003c/code\u003e error comparisons were fixed for \u003ccode\u003eStreamError\u003c/code\u003e and \u003ccode\u003eSessionError\u003c/code\u003e: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/204\"\u003e#204\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/205\"\u003e#205\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eThe underlying QUIC connection is now closed when establishing a WebTransport session fails: \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/236\"\u003e#236\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eChangelog\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eci: remove 386 (32 bit x86) by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/180\"\u003equic-go/webtransport-go#180\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-python from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/178\"\u003equic-go/webtransport-go#178\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/checkout from 4 to 5 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/177\"\u003equic-go/webtransport-go#177\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump actions/setup-go from 5 to 6 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/179\"\u003equic-go/webtransport-go#179\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: use \u003ccode\u003ego mod tidy -diff\u003c/code\u003e to check for tidied \u003ccode\u003ego.mod\u003c/code\u003e by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/181\"\u003equic-go/webtransport-go#181\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: fix setting of OS and Go envs for Codecov by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/183\"\u003equic-go/webtransport-go#183\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: enable Codecov test analysis by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/182\"\u003equic-go/webtransport-go#182\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate minimum Go version to 1.24, use 1.24 and 1.25 on CI by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/184\"\u003equic-go/webtransport-go#184\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eupdate quic-go to v0.56.0 by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/185\"\u003equic-go/webtransport-go#185\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: remove unused code generation step from lint job by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/186\"\u003equic-go/webtransport-go#186\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eBump golangci/golangci-lint-action from 8 to 9 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/187\"\u003equic-go/webtransport-go#187\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eREADME: remove unfunded status section by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/188\"\u003equic-go/webtransport-go#188\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eexpose SendStream.Context and Stream.Context by \u003ca href=\"https://github.com/Sicilica\"\u003e\u003ccode\u003e@​Sicilica\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/176\"\u003equic-go/webtransport-go#176\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ereplace Session.ConnectionState with Session.SessionState by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/189\"\u003equic-go/webtransport-go#189\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eimplement application protocol negotiation by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/190\"\u003equic-go/webtransport-go#190\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eci: update Chrome to 142.0.7444.162 in interop test by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/192\"\u003equic-go/webtransport-go#192\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eremove header-based draft version negotiation by \u003ca href=\"https://github.com/marten-seemann\"\u003e\u003ccode\u003e@​marten-seemann\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/pull/191\"\u003equic-go/webtransport-go#191\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/9d448b125754f4c83064afb2c586221214e55eec\"\u003e\u003ccode\u003e9d448b1\u003c/code\u003e\u003c/a\u003e enable and use the QUIC Stream Resets with Partial Delivery extension (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/239\"\u003e#239\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/128538a14311a6ca9f1518658dc6ceeabb6e1569\"\u003e\u003ccode\u003e128538a\u003c/code\u003e\u003c/a\u003e update quic-go to v0.59.0 (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/240\"\u003e#240\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/5d8d3c4fd68741a7611bd680e525b04269638520\"\u003e\u003ccode\u003e5d8d3c4\u003c/code\u003e\u003c/a\u003e immediately reject streams for closed sessions (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/235\"\u003e#235\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/af56b7f689ccf0b889f46aed781507c433b7d9b3\"\u003e\u003ccode\u003eaf56b7f\u003c/code\u003e\u003c/a\u003e close client’s QUIC connection on WebTransport session close or failure (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/236\"\u003e#236\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/093f58bbc35e4c1a544bb249c2ee1894f909c128\"\u003e\u003ccode\u003e093f58b\u003c/code\u003e\u003c/a\u003e move connection management to client and server (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/231\"\u003e#231\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/9154cfc2990189d483a61b97226b5498e689b75d\"\u003e\u003ccode\u003e9154cfc\u003c/code\u003e\u003c/a\u003e ci: update golangci-lint to v2.7.2 (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/234\"\u003e#234\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/acca67672e89df3c33b54aa607bdd59a5dd4a354\"\u003e\u003ccode\u003eacca676\u003c/code\u003e\u003c/a\u003e add a security policy (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/233\"\u003e#233\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/f2622e11ade1b815708062fe7c008e7c9a4bf979\"\u003e\u003ccode\u003ef2622e1\u003c/code\u003e\u003c/a\u003e remove stray TODO from Session (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/232\"\u003e#232\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/58df38ab96d0ad6f6c67fb40d2bc4883e896be6a\"\u003e\u003ccode\u003e58df38a\u003c/code\u003e\u003c/a\u003e simplify stream buffering logic in the session manager (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/230\"\u003e#230\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/quic-go/webtransport-go/commit/3b5a3df73beed82d6709020164c0a8883af202ca\"\u003e\u003ccode\u003e3b5a3df\u003c/code\u003e\u003c/a\u003e README: add list of notable projects and a release policy (\u003ca href=\"https://redirect.github.com/quic-go/webtransport-go/issues/225\"\u003e#225\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/quic-go/webtransport-go/compare/v0.8.0...v0.10.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/ulikunitz/xz` from 0.5.12 to 0.5.14\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/7184815834c4777e8fa665946721d5fe114c2c35\"\u003e\u003ccode\u003e7184815\u003c/code\u003e\u003c/a\u003e Preparation of release v0.5.14\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/88ddf1d0d98d688db65de034f48960b2760d2ae2\"\u003e\u003ccode\u003e88ddf1d\u003c/code\u003e\u003c/a\u003e Address Security Issue GHSA-jc7w-c686-c4v9\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/ulikunitz/xz/commit/c8314b8f21e9c5e25b52da07544cac14db277e89\"\u003e\u003ccode\u003ec8314b8\u003c/code\u003e\u003c/a\u003e Add new package xio with WriteCloserStack\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/ulikunitz/xz/compare/v0.5.12...v0.5.14\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `go.opentelemetry.io/otel/sdk` from 1.34.0 to 1.40.0\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/CHANGELOG.md\"\u003ego.opentelemetry.io/otel/sdk's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003e[1.40.0/0.62.0/0.16.0] 2026-02-02\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd \u003ccode\u003eAlwaysRecord\u003c/code\u003e sampler in \u003ccode\u003ego.opentelemetry.io/otel/sdk/trace\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7724\"\u003e#7724\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eEnabled\u003c/code\u003e method to all synchronous instrument interfaces (\u003ccode\u003eFloat64Counter\u003c/code\u003e, \u003ccode\u003eFloat64UpDownCounter\u003c/code\u003e, \u003ccode\u003eFloat64Histogram\u003c/code\u003e, \u003ccode\u003eFloat64Gauge\u003c/code\u003e, \u003ccode\u003eInt64Counter\u003c/code\u003e, \u003ccode\u003eInt64UpDownCounter\u003c/code\u003e, \u003ccode\u003eInt64Histogram\u003c/code\u003e, \u003ccode\u003eInt64Gauge\u003c/code\u003e,) in \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e.\nThis stabilizes the synchronous instrument enabled feature, allowing users to check if an instrument will process measurements before performing computationally expensive operations. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7763\"\u003e#7763\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.39.0\u003c/code\u003e package.\nThe package contains semantic conventions from the \u003ccode\u003ev1.39.0\u003c/code\u003e version of the OpenTelemetry Semantic Conventions.\nSee the \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/blob/main/semconv/v1.39.0/MIGRATION.md\"\u003emigration documentation\u003c/a\u003e for information on how to upgrade from \u003ccode\u003ego.opentelemetry.io/otel/semconv/v1.38.0.\u003c/code\u003e (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7783\"\u003e#7783\u003c/a\u003e, \u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7789\"\u003e#7789\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eChanged\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eHistogramReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e by 4x. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7443\"\u003e#7443\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove the concurrent performance of \u003ccode\u003eFixedSizeReservoir\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric/exemplar\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7447\"\u003e#7447\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7474\"\u003e#7474\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent synchronous gauge measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7478\"\u003e#7478\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/stdout/stdoutmetric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7492\"\u003e#7492\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eExporter\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e ignores metrics with the scope \u003ccode\u003ego.opentelemetry.io/contrib/bridges/prometheus\u003c/code\u003e.\nThis prevents scrape failures when the Prometheus exporter is misconfigured to get data from the Prometheus bridge. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7688\"\u003e#7688\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eImprove performance of concurrent exponential histogram measurements in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7702\"\u003e#7702\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003erpc.grpc.status_code\u003c/code\u003e attribute in the experimental metrics emitted from \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e is replaced with the \u003ccode\u003erpc.response.status_code\u003c/code\u003e attribute to align with the semantic conventions. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eFixed\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eFix bad log message when key-value pairs are dropped because of key duplication in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eDroppedAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not count the non-attribute key-value pairs dropped because of key duplication. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix \u003ccode\u003eSetAttributes\u003c/code\u003e on \u003ccode\u003eRecord\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e to not log that attributes are dropped when they are actually not dropped. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7662\"\u003e#7662\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eFix missing \u003ccode\u003erequest.GetBody\u003c/code\u003e in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp\u003c/code\u003e to correctly handle HTTP/2 \u003ccode\u003eGOAWAY\u003c/code\u003e frame. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7794\"\u003e#7794\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003eWithHostID\u003c/code\u003e detector in \u003ccode\u003ego.opentelemetry.io/otel/sdk/resource\u003c/code\u003e to use full path for \u003ccode\u003eioreg\u003c/code\u003e command on Darwin (macOS). (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7818\"\u003e#7818\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDeprecated\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDeprecate \u003ccode\u003ego.opentelemetry.io/otel/exporters/zipkin\u003c/code\u003e.\nFor more information, see the \u003ca href=\"https://opentelemetry.io/blog/2025/deprecating-zipkin-exporters/\"\u003eOTel blog post deprecating the Zipkin exporter\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7670\"\u003e#7670\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003e[1.39.0/0.61.0/0.15.0/0.0.14] 2025-12-05\u003c/h2\u003e\n\u003ch3\u003eAdded\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eGreatly reduce the cost of recording metrics in \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e using hashing for map keys. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7175\"\u003e#7175\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd \u003ccode\u003eWithInstrumentationAttributeSet\u003c/code\u003e option to \u003ccode\u003ego.opentelemetry.io/otel/log\u003c/code\u003e, \u003ccode\u003ego.opentelemetry.io/otel/metric\u003c/code\u003e, and \u003ccode\u003ego.opentelemetry.io/otel/trace\u003c/code\u003e packages.\nThis provides a concurrent-safe and performant alternative to \u003ccode\u003eWithInstrumentationAttributes\u003c/code\u003e by accepting a pre-constructed \u003ccode\u003eattribute.Set\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7287\"\u003e#7287\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability for the Prometheus exporter in \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus\u003c/code\u003e.\nCheck the \u003ccode\u003ego.opentelemetry.io/otel/exporters/prometheus/internal/x\u003c/code\u003e package documentation for more information. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7345\"\u003e#7345\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlplog/otlploggrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7353\"\u003e#7353\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd temporality selector functions \u003ccode\u003eDeltaTemporalitySelector\u003c/code\u003e, \u003ccode\u003eCumulativeTemporalitySelector\u003c/code\u003e, \u003ccode\u003eLowMemoryTemporalitySelector\u003c/code\u003e to \u003ccode\u003ego.opentelemetry.io/otel/sdk/metric\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7434\"\u003e#7434\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics for simple log processor in \u003ccode\u003ego.opentelemetry.io/otel/sdk/log\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7548\"\u003e#7548\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdd experimental observability metrics in \u003ccode\u003ego.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7459\"\u003e#7459\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/a3a5317c5caed1656fb5b301b66dfeb3c4c944e0\"\u003e\u003ccode\u003ea3a5317\u003c/code\u003e\u003c/a\u003e Release v1.40.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7859\"\u003e#7859\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/77785da545d67b38774891cbdd334368bfacdfd8\"\u003e\u003ccode\u003e77785da\u003c/code\u003e\u003c/a\u003e chore(deps): update github/codeql-action action to v4.32.1 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7858\"\u003e#7858\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/56fa1c297bf71f0ada3dbf4574a45d0607812cc0\"\u003e\u003ccode\u003e56fa1c2\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/clipperhouse/uax29/v2 to v2.5.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7857\"\u003e#7857\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/298cbedf256b7a9ab3c21e41fc5e3e6d6e4e94aa\"\u003e\u003ccode\u003e298cbed\u003c/code\u003e\u003c/a\u003e Upgrade semconv use to v1.39.0 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7854\"\u003e#7854\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/3264bf171b1e6cd70f6be4a483f2bcb84eda6ccf\"\u003e\u003ccode\u003e3264bf1\u003c/code\u003e\u003c/a\u003e refactor: modernize code (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7850\"\u003e#7850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/fd5d030c0aa8b5bfe786299047bc914b5714d642\"\u003e\u003ccode\u003efd5d030\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/8d3b4cb2501dec9f1c5373123e425f109c43b8d2\"\u003e\u003ccode\u003e8d3b4cb\u003c/code\u003e\u003c/a\u003e chore(deps): update actions/cache action to v5.0.3 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7847\"\u003e#7847\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/91f7cadfcac363d67030f6913687c6dbbe086823\"\u003e\u003ccode\u003e91f7cad\u003c/code\u003e\u003c/a\u003e chore(deps): update github.com/timakin/bodyclose digest to 73d1f95 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7845\"\u003e#7845\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/fdad1eb7f350ee1f5fdb3d9a0c6855cc88ee9d75\"\u003e\u003ccode\u003efdad1eb\u003c/code\u003e\u003c/a\u003e chore(deps): update module github.com/grpc-ecosystem/grpc-gateway/v2 to v2.27...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/commit/c46d3bac181ddaaa83286e9ccf2cd9f7705fd3d9\"\u003e\u003ccode\u003ec46d3ba\u003c/code\u003e\u003c/a\u003e chore(deps): update golang.org/x/telemetry digest to fcf36f6 (\u003ca href=\"https://redirect.github.com/open-telemetry/opentelemetry-go/issues/7843\"\u003e#7843\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/open-telemetry/opentelemetry-go/compare/v1.34.0...v1.40.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.36.0 to 0.41.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/ef5341b70697ceb55f904384bd982587224e8b0c\"\u003e\u003ccode\u003eef5341b\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b999374650442ee37e9bbd97d6a11ad7ed999b98\"\u003e\u003ccode\u003eb999374\u003c/code\u003e\u003c/a\u003e acme: fix pebble subprocess output data race\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c247dead11de7671a21a6c5169555e2aa5313caa\"\u003e\u003ccode\u003ec247dea\u003c/code\u003e\u003c/a\u003e x509roots/fallback: store bundle certs directly in DER\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/1fda73153feef7b246f24005838c387e354e5e3b\"\u003e\u003ccode\u003e1fda731\u003c/code\u003e\u003c/a\u003e acme: increase pebble test waitForServer attempts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/1b4c3d2e8c8be172c6af8f2f72778e69e74d2e78\"\u003e\u003ccode\u003e1b4c3d2\u003c/code\u003e\u003c/a\u003e x509roots/fallback: update bundle\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b903b535d3ef82fab12a9cc0fa50fccc396ced55\"\u003e\u003ccode\u003eb903b53\u003c/code\u003e\u003c/a\u003e acme: capture pebble test subprocess stdout/stderr\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/459a9db11b9c43bb1d61722bfd371751d6de05c9\"\u003e\u003ccode\u003e459a9db\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/74e709ad8a8068445173aa5f3e8d7c89caf510c3\"\u003e\u003ccode\u003e74e709a\u003c/code\u003e\u003c/a\u003e ssh: add AlgorithmNegotiationError\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b3790b8d914304c8187dc2c86800101c329d77cd\"\u003e\u003ccode\u003eb3790b8\u003c/code\u003e\u003c/a\u003e acme: fix TLSALPN01ChallengeCert for IP address identifiers\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/1dc4269656dd23b2c4e71c51b8af6bc2b63eecb7\"\u003e\u003ccode\u003e1dc4269\u003c/code\u003e\u003c/a\u003e acme: add Pebble integration testing\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.36.0...v0.41.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.69.4 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.69.4...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore \u003cdependency name\u003e major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)\n- `@dependabot ignore \u003cdependency name\u003e` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)\n- `@dependabot unignore \u003cdependency name\u003e` will remove all of the ignore conditions of the specified dependency\n- `@dependabot unignore \u003cdependency name\u003e \u003cignore condition\u003e` will remove the ignore condition of the specified dependency and ignore conditions\nYou can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Layr-Labs/kona/network/alerts).\n\n\u003c/details\u003e","html_url":"https://github.com/Layr-Labs/kona/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/Layr-Labs%2Fkona/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"}},{"old_version":"0.5.12","new_version":"0.5.14","update_type":"patch","path":null,"pr_created_at":"2026-03-19T00:46:21.000Z","version_change":"0.5.12 → 0.5.14","issue":{"uuid":"4098523334","node_id":"PR_kwDOMXf1d87LtTaQ","number":19,"state":"closed","title":"build(deps): Bump the go_modules group across 38 directories with 11 updates","user":"dependabot[bot]","labels":["dependencies","go"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-03-19T00:46:50.000Z","author_association":null,"state_reason":null,"created_at":"2026-03-19T00:46:21.000Z","updated_at":"2026-03-19T00:46:53.000Z","time_to_close":29,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps): Bump","group_name":"go_modules","update_count":11,"packages":[{"name":"cosmossdk.io/math","old_version":"1.3.0","new_version":"1.4.0","repository_url":"https://github.com/cosmos/cosmos-sdk"},{"name":"golang.org/x/crypto","old_version":"0.25.0","new_version":"0.45.0","repository_url":"https://github.com/golang/crypto"},{"name":"google.golang.org/grpc","old_version":"1.64.1","new_version":"1.79.3","repository_url":"https://github.com/grpc/grpc-go"},{"name":"filippo.io/edwards25519","old_version":"1.1.0","new_version":"1.1.1","repository_url":"https://github.com/FiloSottile/edwards25519"},{"name":"github.com/dvsekhvalnov/jose2go","old_version":"1.6.0","new_version":"1.7.0","repository_url":"https://github.com/dvsekhvalnov/jose2go"},{"name":"github.com/hashicorp/go-getter","old_version":"1.7.5","new_version":"1.7.9","repository_url":"https://github.com/hashicorp/go-getter"},{"name":"github.com/ulikunitz/xz","old_version":"0.5.12","new_version":"0.5.14","repository_url":"https://github.com/ulikunitz/xz"}],"path":null,"ecosystem":"go"},"body":"Bumps the go_modules group with 4 updates in the / directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 1 update in the /api directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 4 updates in the /client/v2 directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 1 update in the /collections directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /core directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /depinject directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /orm directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 2 updates in the /runtime/v2 directory: [golang.org/x/crypto](https://github.com/golang/crypto) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 1 update in the /server/v2 directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 7 updates in the /simapp directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 7 updates in the /simapp/v2 directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 2 updates in the /store directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) and [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft).\nBumps the go_modules group with 2 updates in the /store/v2 directory: [golang.org/x/crypto](https://github.com/golang/crypto) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 6 updates in the /tests directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `1.0.0-rc1` | `1.0.1` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 4 updates in the /tests/systemtests directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 4 updates in the /tools/confix directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 5 updates in the /tools/cosmovisor directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft) | `0.38.8` | `0.38.21` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\nBumps the go_modules group with 4 updates in the /tools/hubl directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 5 updates in the /x/accounts directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/auth directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/authz directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/bank directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/circuit directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/consensus directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/distribution directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/epochs directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/evidence directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/feegrant directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/gov directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/group directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/mint directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 4 updates in the /x/nft directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk), [github.com/cometbft/cometbft](https://github.com/cometbft/cometbft), [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) and [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go).\nBumps the go_modules group with 5 updates in the /x/params directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/protocolpool directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/slashing directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 5 updates in the /x/staking directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n\nBumps the go_modules group with 2 updates in the /x/tx directory: [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) and [google.golang.org/grpc](https://github.com/grpc/grpc-go).\nBumps the go_modules group with 7 updates in the /x/upgrade directory:\n\n| Package | From | To |\n| --- | --- | --- |\n| [cosmossdk.io/math](https://github.com/cosmos/cosmos-sdk) | `1.3.0` | `1.4.0` |\n| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.25.0` | `0.45.0` |\n| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.64.1` | `1.79.3` |\n| [filippo.io/edwards25519](https://github.com/FiloSottile/edwards25519) | `1.1.0` | `1.1.1` |\n| [github.com/dvsekhvalnov/jose2go](https://github.com/dvsekhvalnov/jose2go) | `1.6.0` | `1.7.0` |\n| [github.com/hashicorp/go-getter](https://github.com/hashicorp/go-getter) | `1.7.5` | `1.7.9` |\n| [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz) | `0.5.12` | `0.5.14` |\n\n\nUpdates `cosmossdk.io/math` from 1.3.0 to 1.4.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/6b4557ddb8d865a68381a1b059ea9d5666e28710\"\u003e\u003ccode\u003e6b4557d\u003c/code\u003e\u003c/a\u003e chore: prepare log v1.4.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21197\"\u003e#21197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5a08833386eb358151038c0bc113124b57192269\"\u003e\u003ccode\u003e5a08833\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21189\"\u003e#21189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/655b30367576edae1afacfc95d99bd2f3d98a447\"\u003e\u003ccode\u003e655b303\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21190\"\u003e#21190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/cc25f59e6198a4acca5d120a86b34c561b476b45\"\u003e\u003ccode\u003ecc25f59\u003c/code\u003e\u003c/a\u003e ci: add compat check 052 x main (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21174\"\u003e#21174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5b7d8b6d82d4d5a50bdb37d8369600f5ef491b9b\"\u003e\u003ccode\u003e5b7d8b6\u003c/code\u003e\u003c/a\u003e test(stf/mock): Unmarshal with knowing the message type (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21178\"\u003e#21178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/641f9646510e5567a4a6b0011b44ac9eef6ab073\"\u003e\u003ccode\u003e641f964\u003c/code\u003e\u003c/a\u003e ci: attempt to fix goreleaser (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21194\"\u003e#21194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/a0fdab27b2425d5cb28b4fafa898e79e2acc4837\"\u003e\u003ccode\u003ea0fdab2\u003c/code\u003e\u003c/a\u003e test(server/v2): Update testdata prune options (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21192\"\u003e#21192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/4b4ec478dfd26edf3ddc906c757cea1cc8dac68f\"\u003e\u003ccode\u003e4b4ec47\u003c/code\u003e\u003c/a\u003e build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21191\"\u003e#21191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/feb0e077a953f5982c0a64743f849ae257223baa\"\u003e\u003ccode\u003efeb0e07\u003c/code\u003e\u003c/a\u003e feat: [ADR-071] Cryptography v2 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/18824\"\u003e#18824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/111a99995ea9d9732ffd66ac1cf4a214c77d3d8e\"\u003e\u003ccode\u003e111a999\u003c/code\u003e\u003c/a\u003e docs: rename v2 to di (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21181\"\u003e#21181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/log/v1.3.0...log/v1.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 1.0.0-rc1 to 1.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md#v101\"\u003eCHANGELOG\u003c/a\u003e for this release.\u003c/p\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.x/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this release.\u003c/p\u003e\n\u003cp\u003ePlease see more information on the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0/docs/guides/upgrades/v0.38-to-v1.0.md\"\u003eUpgrading from CometBFT v0.38 to v1.0\u003c/a\u003e guide.\u003c/p\u003e\n\u003ch2\u003ev1.0.0-rc2\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0-rc2/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this pre-release, but not yet officially released.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eFebruary 3, 2025\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis release fixes two security issues (ASA-2025-001, ASA-2025-002). Users are\nencouraged to upgrade as soon as possible.\u003c/p\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e Ban peer if it reports height lower than what was previously reported\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-22qq-3xwm-r5x4\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[consensus]\u003c/code\u003e Fix overflow in synchrony parameters in \u003ccode\u003elinux/amd64\u003c/code\u003e architecture.\nCap \u003ccode\u003eSynchronyParams.MessageDelay\u003c/code\u003e to 24hrs.\nCap \u003ccode\u003eSynchronyParams.Precision\u003c/code\u003e to 30 sec.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4815\"\u003e#4815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Fix JSON marshal of private key\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4772\"\u003e#4772\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e to use \u003ccode\u003edstMinPk\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4783\"\u003e#4783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[privval]\u003c/code\u003e Re-enable some sanity checks related to vote extensions\nwhen signing a vote\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3642\"\u003e#3642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Check that \u003ccode\u003ePart.Index\u003c/code\u003e equals \u003ccode\u003ePart.Proof.Index\u003c/code\u003e\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-r3r4-g7hq-pq4f\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[go/runtime]\u003c/code\u003e Bump minimum Go version to 1.23.5\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4888\"\u003e#4888\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eDecember 17, 2024\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis is a major release of CometBFT that includes several substantial changes\nthat aim to reduce bandwidth consumption, enable modularity, improve\nintegrators' experience and increase the velocity of the CometBFT development\nteam, including:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eProposer-Based Timestamps (PBTS) support. PBTS is a Byzantine fault-tolerant\nalgorithm used by CometBFT for computing block times.\nWhen activated on a chain, it replaces the pre-existing BFT-time algorithm.\nSee \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/spec/consensus/proposer-based-timestamp\"\u003espec\u003c/a\u003e doc for PBTS.\u003c/li\u003e\n\u003cli\u003eValidators now proactively communicate the block parts they already have so\nothers do not resend them, reducing amplification in the network and reducing\nbandwidth consumption.\u003c/li\u003e\n\u003cli\u003eAn experimental feature in the mempool that allows limiting the number of\npeers to which transactions are forwarded, allowing operators to optimize\ngossip-related bandwidth consumption further.\u003c/li\u003e\n\u003cli\u003eAn opt-in \u003ccode\u003enop\u003c/code\u003e mempool, which allows application developers to turn off all\u003c/li\u003e\n\u003c/ol\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d22299509a50140b74d81b113c4d78e4cf501994\"\u003e\u003ccode\u003ed222995\u003c/code\u003e\u003c/a\u003e chore: v1.0.1 release (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4907\"\u003e#4907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/f943aabc7b9201ea1089ff3381479929435ce424\"\u003e\u003ccode\u003ef943aab\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/0ee80cd609c7ae9fe856bdd1c6d38553fdae90ce\"\u003e\u003ccode\u003e0ee80cd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/481e46477a1445749b08067feb1bf009443f3d54\"\u003e\u003ccode\u003e481e464\u003c/code\u003e\u003c/a\u003e fix(pbts): hardening tests for overflows in \u003ccode\u003eSynchronyParams\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4816\"\u003e#4816\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d4a24c1dc311f45789c67b830d39a60a4c11eebc\"\u003e\u003ccode\u003ed4a24c1\u003c/code\u003e\u003c/a\u003e chore(deps): bump Go version to 1.23.5 (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4888\"\u003e#4888\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4890\"\u003e#4890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/8005556bb49c3c28b72c798a6879c425ac35c1c5\"\u003e\u003ccode\u003e8005556\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.69.4 to 1.70.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4885\"\u003e#4885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/629b28e65aff07f23e8109a06ed16dd128aa5e7b\"\u003e\u003ccode\u003e629b28e\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4884\"\u003e#4884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/e45feab5745ca4cb34b84794821753e661f9258e\"\u003e\u003ccode\u003ee45feab\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/build-push-action from 6.12.0 to 6.13.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4879\"\u003e#4879\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/9f97b87b2a3d35ec6e38d34d0645956ac76503b0\"\u003e\u003ccode\u003e9f97b87\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): fix marshaling FilePVKey (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4772\"\u003e#4772\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4870\"\u003e#4870\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/1fb89c8fce16be38555ee237ffa4716ce69e8d65\"\u003e\u003ccode\u003e1fb89c8\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4813\"\u003e#4813\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4871\"\u003e#4871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v1.0.0-rc1...v1.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.25.0 to 0.32.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.25.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.64.1 to 1.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.64.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `filippo.io/edwards25519` from 1.1.0 to 1.1.1\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/FiloSottile/edwards25519/commit/d1c650afb95fad0742b98d95f2eb2cf031393abb\"\u003e\u003ccode\u003ed1c650a\u003c/code\u003e\u003c/a\u003e extra: initialize receiver in MultiScalarMult\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/FiloSottile/edwards25519/compare/v1.1.0...v1.1.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/dvsekhvalnov/jose2go` from 1.6.0 to 1.7.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/0a0673dd7f2820a446de5b04b9094b2291d77d5d\"\u003e\u003ccode\u003e0a0673d\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dvsekhvalnov/jose2go/issues/34\"\u003e#34\u003c/a\u003e from dvsekhvalnov/issue-33-deflate-limit\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c3fff7c58065c848ba063d5cee07bd2c5908a14f\"\u003e\u003ccode\u003ec3fff7c\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/e51b47f33c704a31f1f7ad75120759e01de5fb4c\"\u003e\u003ccode\u003ee51b47f\u003c/code\u003e\u003c/a\u003e docs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/c7dde528a01b38c96652b99a5d2ed93d8932b39e\"\u003e\u003ccode\u003ec7dde52\u003c/code\u003e\u003c/a\u003e fixing workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/a194baa4bb649000dd2266218155727c27297341\"\u003e\u003ccode\u003ea194baa\u003c/code\u003e\u003c/a\u003e added go versions and OSs to matrix\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/f31cfc6b273af924c90bd5305b92ff5f9af10763\"\u003e\u003ccode\u003ef31cfc6\u003c/code\u003e\u003c/a\u003e fixing yaml\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/1a4ba55b88b757ed4533884a014531d3f421462b\"\u003e\u003ccode\u003e1a4ba55\u003c/code\u003e\u003c/a\u003e added matrix to workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/d2baff2f0b24baab11bd34b8268c9aabfeb31914\"\u003e\u003ccode\u003ed2baff2\u003c/code\u003e\u003c/a\u003e go workflow\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dvsekhvalnov/jose2go/commit/b14c81a7a3261666e4ec76f04438f79d70211272\"\u003e\u003ccode\u003eb14c81a\u003c/code\u003e\u003c/a\u003e added limitation for deflate decompression stream\u003c/li\u003e\n\u003cli\u003eSee full diff in \u003ca href=\"https://github.com/dvsekhvalnov/jose2go/compare/v1.6.0...v1.7.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.27.0 to 0.34.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd\"\u003e\u003ccode\u003e8da7ed1\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d\"\u003e\u003ccode\u003e2124140\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72\"\u003e\u003ccode\u003ee9d95ba\u003c/code\u003e\u003c/a\u003e http2: do not surface errors from a conn's idle timer expiring\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f\"\u003e\u003ccode\u003ec2be992\u003c/code\u003e\u003c/a\u003e quic: remember which remote connection IDs have been retired\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464\"\u003e\u003ccode\u003edfc720d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb\"\u003e\u003ccode\u003e8e66b04\u003c/code\u003e\u003c/a\u003e html: use strings.EqualFold instead of lowering ourselves\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46\"\u003e\u003ccode\u003eb935f7b\u003c/code\u003e\u003c/a\u003e html: avoid endless loop on error token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3\"\u003e\u003ccode\u003e9af49ef\u003c/code\u003e\u003c/a\u003e route: remove unused sizeof* consts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a\"\u003e\u003ccode\u003e6705db9\u003c/code\u003e\u003c/a\u003e quic: clean up crypto streams when dropping packet protection keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200\"\u003e\u003ccode\u003e4ef7588\u003c/code\u003e\u003c/a\u003e quic: handle ACK frame in packet which drops number space\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.27.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.64.1 to 1.79.3\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/tls: Fix a bug where the port was not stripped from the authority override before validation. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8726\"\u003e#8726\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/Atul1710\"\u003e\u003ccode\u003e@​Atul1710\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds/priority: Fix a bug causing delayed failover to lower-priority clusters when a higher-priority cluster is stuck in \u003ccode\u003eCONNECTING\u003c/code\u003e state. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8813\"\u003e#8813\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ehealth: Fix a bug where health checks failed for clients using legacy compression options (\u003ccode\u003eWithDecompressor\u003c/code\u003e or \u003ccode\u003eRPCDecompressor\u003c/code\u003e). (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8765\"\u003e#8765\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/sanki92\"\u003e\u003ccode\u003e@​sanki92\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003etransport: Fix an issue where the HTTP/2 server could skip header size checks when terminating a stream early. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8769\"\u003e#8769\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eserver: Propagate status detail headers, if available, when terminating a stream during request header processing. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8754\"\u003e#8754\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/joybestourous\"\u003e\u003ccode\u003e@​joybestourous\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003ePerformance Improvements\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ecredentials/alts: Optimize read buffer alignment to reduce copies. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8791\"\u003e#8791\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003emem: Optimize pooling and creation of \u003ccode\u003ebuffer\u003c/code\u003e objects.  (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8784\"\u003e#8784\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003etransport: Reduce slice re-allocations by reserving slice capacity. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8797\"\u003e#8797\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/dda86dbd9cecb8b35b58c73d507d81d67761205f\"\u003e\u003ccode\u003edda86db\u003c/code\u003e\u003c/a\u003e Change version to 1.79.3 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8983\"\u003e#8983\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/72186f163e75a065c39e6f7df9b6dea07fbdeff5\"\u003e\u003ccode\u003e72186f1\u003c/code\u003e\u003c/a\u003e grpc: enforce strict path checking for incoming requests on the server (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/97ca3522b239edf6813e2b1106924e9d55e89d43\"\u003e\u003ccode\u003e97ca352\u003c/code\u003e\u003c/a\u003e Changing version to 1.79.3-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8954\"\u003e#8954\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/8902ab6efea590f5b3861126559eaa26fa9783b2\"\u003e\u003ccode\u003e8902ab6\u003c/code\u003e\u003c/a\u003e Change the version to release 1.79.2 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8947\"\u003e#8947\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/a9286705aa689bee321ec674323b6896284f3e02\"\u003e\u003ccode\u003ea928670\u003c/code\u003e\u003c/a\u003e Cherry-pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8874\"\u003e#8874\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8904\"\u003e#8904\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/06df3638c0bcee88197b1033b3ba83e1eb8bc010\"\u003e\u003ccode\u003e06df363\u003c/code\u003e\u003c/a\u003e Change version to 1.79.2-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8903\"\u003e#8903\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/782f2de44f597af18a120527e7682a6670d84289\"\u003e\u003ccode\u003e782f2de\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8902\"\u003e#8902\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/850eccbb2257bd2de6ac28ee88a7172ab6175629\"\u003e\u003ccode\u003e850eccb\u003c/code\u003e\u003c/a\u003e Change version to 1.79.1-dev (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8851\"\u003e#8851\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/765ff056b6890f6c8341894df4e9668e9bfc18ef\"\u003e\u003ccode\u003e765ff05\u003c/code\u003e\u003c/a\u003e Change version to 1.79.0 (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8850\"\u003e#8850\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/grpc/grpc-go/commit/68804be0e78ed0365bb5a576dedc12e2168ed63e\"\u003e\u003ccode\u003e68804be\u003c/code\u003e\u003c/a\u003e Cherry pick \u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e to v1.79.x (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8896\"\u003e#8896\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/grpc/grpc-go/compare/v1.64.1...v1.79.3\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/net` from 0.27.0 to 0.48.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8da7ed17cdaf5e1d42aa868f0b0322a207a17dcd\"\u003e\u003ccode\u003e8da7ed1\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/2124140b044c3cbbd6a3ed7c45e2d4420be7039d\"\u003e\u003ccode\u003e2124140\u003c/code\u003e\u003c/a\u003e all: make function and struct comments match the names\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/e9d95ba163f72442cc09dca1865147a62351ac72\"\u003e\u003ccode\u003ee9d95ba\u003c/code\u003e\u003c/a\u003e http2: do not surface errors from a conn's idle timer expiring\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/c2be9921fe46b336b1991c4e5984666bd75b941f\"\u003e\u003ccode\u003ec2be992\u003c/code\u003e\u003c/a\u003e quic: remember which remote connection IDs have been retired\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/dfc720dfe0cfc125116068c20efcdcb5e4eab464\"\u003e\u003ccode\u003edfc720d\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/8e66b04771e35c4e4125e8c60334b34e2423effb\"\u003e\u003ccode\u003e8e66b04\u003c/code\u003e\u003c/a\u003e html: use strings.EqualFold instead of lowering ourselves\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/b935f7b5d723c82894e1a1fd936a94dd2d1eae46\"\u003e\u003ccode\u003eb935f7b\u003c/code\u003e\u003c/a\u003e html: avoid endless loop on error token\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/9af49ef148d7d8b3e4cbbd9cc0cd37f2a520a4a3\"\u003e\u003ccode\u003e9af49ef\u003c/code\u003e\u003c/a\u003e route: remove unused sizeof* consts\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/6705db9a4df8f2cf16aed83e773e7a0213788b7a\"\u003e\u003ccode\u003e6705db9\u003c/code\u003e\u003c/a\u003e quic: clean up crypto streams when dropping packet protection keys\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/net/commit/4ef7588d2b3f83775099797baac43c34e2e23200\"\u003e\u003ccode\u003e4ef7588\u003c/code\u003e\u003c/a\u003e quic: handle ACK frame in packet which drops number space\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/net/compare/v0.27.0...v0.34.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `cosmossdk.io/math` from 1.3.0 to 1.4.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/6b4557ddb8d865a68381a1b059ea9d5666e28710\"\u003e\u003ccode\u003e6b4557d\u003c/code\u003e\u003c/a\u003e chore: prepare log v1.4.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21197\"\u003e#21197\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5a08833386eb358151038c0bc113124b57192269\"\u003e\u003ccode\u003e5a08833\u003c/code\u003e\u003c/a\u003e build(deps): Bump golang.org/x/crypto from 0.25.0 to 0.26.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21189\"\u003e#21189\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/655b30367576edae1afacfc95d99bd2f3d98a447\"\u003e\u003ccode\u003e655b303\u003c/code\u003e\u003c/a\u003e build(deps): Bump github.com/spf13/cast from 1.6.0 to 1.7.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21190\"\u003e#21190\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/cc25f59e6198a4acca5d120a86b34c561b476b45\"\u003e\u003ccode\u003ecc25f59\u003c/code\u003e\u003c/a\u003e ci: add compat check 052 x main (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21174\"\u003e#21174\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/5b7d8b6d82d4d5a50bdb37d8369600f5ef491b9b\"\u003e\u003ccode\u003e5b7d8b6\u003c/code\u003e\u003c/a\u003e test(stf/mock): Unmarshal with knowing the message type (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21178\"\u003e#21178\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/641f9646510e5567a4a6b0011b44ac9eef6ab073\"\u003e\u003ccode\u003e641f964\u003c/code\u003e\u003c/a\u003e ci: attempt to fix goreleaser (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21194\"\u003e#21194\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/a0fdab27b2425d5cb28b4fafa898e79e2acc4837\"\u003e\u003ccode\u003ea0fdab2\u003c/code\u003e\u003c/a\u003e test(server/v2): Update testdata prune options (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21192\"\u003e#21192\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/4b4ec478dfd26edf3ddc906c757cea1cc8dac68f\"\u003e\u003ccode\u003e4b4ec47\u003c/code\u003e\u003c/a\u003e build(deps): Bump bufbuild/buf-setup-action from 1.35.1 to 1.36.0 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21191\"\u003e#21191\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/feb0e077a953f5982c0a64743f849ae257223baa\"\u003e\u003ccode\u003efeb0e07\u003c/code\u003e\u003c/a\u003e feat: [ADR-071] Cryptography v2 (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/18824\"\u003e#18824\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cosmos/cosmos-sdk/commit/111a99995ea9d9732ffd66ac1cf4a214c77d3d8e\"\u003e\u003ccode\u003e111a999\u003c/code\u003e\u003c/a\u003e docs: rename v2 to di (\u003ca href=\"https://redirect.github.com/cosmos/cosmos-sdk/issues/21181\"\u003e#21181\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cosmos/cosmos-sdk/compare/log/v1.3.0...log/v1.4.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `github.com/cometbft/cometbft` from 1.0.0-rc1 to 1.0.1\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/releases\"\u003egithub.com/cometbft/cometbft's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md#v101\"\u003eCHANGELOG\u003c/a\u003e for this release.\u003c/p\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.x/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this release.\u003c/p\u003e\n\u003cp\u003ePlease see more information on the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0/docs/guides/upgrades/v0.38-to-v1.0.md\"\u003eUpgrading from CometBFT v0.38 to v1.0\u003c/a\u003e guide.\u003c/p\u003e\n\u003ch2\u003ev1.0.0-rc2\u003c/h2\u003e\n\u003cp\u003eSee the \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.0-rc2/CHANGELOG.md\"\u003eCHANGELOG\u003c/a\u003e for changes available in this pre-release, but not yet officially released.\u003c/p\u003e\n\u003c/blockquote\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eChangelog\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/CHANGELOG.md\"\u003egithub.com/cometbft/cometbft's changelog\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev1.0.1\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eFebruary 3, 2025\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis release fixes two security issues (ASA-2025-001, ASA-2025-002). Users are\nencouraged to upgrade as soon as possible.\u003c/p\u003e\n\u003ch3\u003eBUG FIXES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[blocksync]\u003c/code\u003e Ban peer if it reports height lower than what was previously reported\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-22qq-3xwm-r5x4\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[consensus]\u003c/code\u003e Fix overflow in synchrony parameters in \u003ccode\u003elinux/amd64\u003c/code\u003e architecture.\nCap \u003ccode\u003eSynchronyParams.MessageDelay\u003c/code\u003e to 24hrs.\nCap \u003ccode\u003eSynchronyParams.Precision\u003c/code\u003e to 30 sec.\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4815\"\u003e#4815\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Fix JSON marshal of private key\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4772\"\u003e#4772\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[crypto/bls12381]\u003c/code\u003e Modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e to use \u003ccode\u003edstMinPk\u003c/code\u003e\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4783\"\u003e#4783\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[privval]\u003c/code\u003e Re-enable some sanity checks related to vote extensions\nwhen signing a vote\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/3642\"\u003e#3642\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ccode\u003e[types]\u003c/code\u003e Check that \u003ccode\u003ePart.Index\u003c/code\u003e equals \u003ccode\u003ePart.Proof.Index\u003c/code\u003e\n(\u003ca href=\"https://github.com/cometbft/cometbft/security/advisories/GHSA-r3r4-g7hq-pq4f\"\u003eASA-2025-001\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDEPENDENCIES\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ccode\u003e[go/runtime]\u003c/code\u003e Bump minimum Go version to 1.23.5\n(\u003ca href=\"https://redirect.github.com/cometbft/cometbft/pull/4888\"\u003e#4888\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003ev1.0.0\u003c/h2\u003e\n\u003cp\u003e\u003cem\u003eDecember 17, 2024\u003c/em\u003e\u003c/p\u003e\n\u003cp\u003eThis is a major release of CometBFT that includes several substantial changes\nthat aim to reduce bandwidth consumption, enable modularity, improve\nintegrators' experience and increase the velocity of the CometBFT development\nteam, including:\u003c/p\u003e\n\u003col\u003e\n\u003cli\u003eProposer-Based Timestamps (PBTS) support. PBTS is a Byzantine fault-tolerant\nalgorithm used by CometBFT for computing block times.\nWhen activated on a chain, it replaces the pre-existing BFT-time algorithm.\nSee \u003ca href=\"https://github.com/cometbft/cometbft/blob/v1.0.1/spec/consensus/proposer-based-timestamp\"\u003espec\u003c/a\u003e doc for PBTS.\u003c/li\u003e\n\u003cli\u003eValidators now proactively communicate the block parts they already have so\nothers do not resend them, reducing amplification in the network and reducing\nbandwidth consumption.\u003c/li\u003e\n\u003cli\u003eAn experimental feature in the mempool that allows limiting the number of\npeers to which transactions are forwarded, allowing operators to optimize\ngossip-related bandwidth consumption further.\u003c/li\u003e\n\u003cli\u003eAn opt-in \u003ccode\u003enop\u003c/code\u003e mempool, which allows application developers to turn off all\u003c/li\u003e\n\u003c/ol\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d22299509a50140b74d81b113c4d78e4cf501994\"\u003e\u003ccode\u003ed222995\u003c/code\u003e\u003c/a\u003e chore: v1.0.1 release (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4907\"\u003e#4907\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/f943aabc7b9201ea1089ff3381479929435ce424\"\u003e\u003ccode\u003ef943aab\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/0ee80cd609c7ae9fe856bdd1c6d38553fdae90ce\"\u003e\u003ccode\u003e0ee80cd\u003c/code\u003e\u003c/a\u003e Merge commit from fork\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/481e46477a1445749b08067feb1bf009443f3d54\"\u003e\u003ccode\u003e481e464\u003c/code\u003e\u003c/a\u003e fix(pbts): hardening tests for overflows in \u003ccode\u003eSynchronyParams\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4816\"\u003e#4816\u003c/a\u003e...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/d4a24c1dc311f45789c67b830d39a60a4c11eebc\"\u003e\u003ccode\u003ed4a24c1\u003c/code\u003e\u003c/a\u003e chore(deps): bump Go version to 1.23.5 (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4888\"\u003e#4888\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4890\"\u003e#4890\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/8005556bb49c3c28b72c798a6879c425ac35c1c5\"\u003e\u003ccode\u003e8005556\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/grpc from 1.69.4 to 1.70.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4885\"\u003e#4885\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/629b28e65aff07f23e8109a06ed16dd128aa5e7b\"\u003e\u003ccode\u003e629b28e\u003c/code\u003e\u003c/a\u003e build(deps): Bump google.golang.org/protobuf from 1.36.3 to 1.36.4 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4884\"\u003e#4884\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/e45feab5745ca4cb34b84794821753e661f9258e\"\u003e\u003ccode\u003ee45feab\u003c/code\u003e\u003c/a\u003e build(deps): Bump docker/build-push-action from 6.12.0 to 6.13.0 (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4879\"\u003e#4879\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/9f97b87b2a3d35ec6e38d34d0645956ac76503b0\"\u003e\u003ccode\u003e9f97b87\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): fix marshaling FilePVKey (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4772\"\u003e#4772\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4870\"\u003e#4870\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/cometbft/cometbft/commit/1fb89c8fce16be38555ee237ffa4716ce69e8d65\"\u003e\u003ccode\u003e1fb89c8\u003c/code\u003e\u003c/a\u003e fix(crypto/bls12381): modify \u003ccode\u003eSign\u003c/code\u003e, \u003ccode\u003eVerify\u003c/code\u003e (backport \u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4813\"\u003e#4813\u003c/a\u003e) (\u003ca href=\"https://redirect.github.com/cometbft/cometbft/issues/4871\"\u003e#4871\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/cometbft/cometbft/compare/v1.0.0-rc1...v1.0.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `golang.org/x/crypto` from 0.25.0 to 0.32.0\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/4e0068c0098be10d7025c99ab7c50ce454c1f0f9\"\u003e\u003ccode\u003e4e0068c\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/e79546e28b85ea53dd37afe1c4102746ef553b9c\"\u003e\u003ccode\u003ee79546e\u003c/code\u003e\u003c/a\u003e ssh: curb GSSAPI DoS risk by limiting number of specified OIDs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/f91f7a7c31bf90b39c1de895ad116a2bacc88748\"\u003e\u003ccode\u003ef91f7a7\u003c/code\u003e\u003c/a\u003e ssh/agent: prevent panic on malformed constraint\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/2df4153a0311bdfea44376e0eb6ef2faefb0275b\"\u003e\u003ccode\u003e2df4153\u003c/code\u003e\u003c/a\u003e acme/autocert: let automatic renewal work with short lifetime certs\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/bcf6a849efcf4702fa5172cb0998b46c3da1e989\"\u003e\u003ccode\u003ebcf6a84\u003c/code\u003e\u003c/a\u003e acme: pass context to request\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/b4f2b62076abeee4e43fb59544dac565715fbf1e\"\u003e\u003ccode\u003eb4f2b62\u003c/code\u003e\u003c/a\u003e ssh: fix error message on unsupported cipher\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/79ec3a51fcc7fbd2691d56155d578225ccc542e2\"\u003e\u003ccode\u003e79ec3a5\u003c/code\u003e\u003c/a\u003e ssh: allow to bind to a hostname in remote forwarding\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/122a78f140d9d3303ed3261bc374bbbca149140f\"\u003e\u003ccode\u003e122a78f\u003c/code\u003e\u003c/a\u003e go.mod: update golang.org/x dependencies\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/c0531f9c34514ad5c5551e2d6ce569ca673a8afd\"\u003e\u003ccode\u003ec0531f9\u003c/code\u003e\u003c/a\u003e all: eliminate vet diagnostics\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/golang/crypto/commit/0997000b45e3a40598272081bcad03ffd21b8adb\"\u003e\u003ccode\u003e0997000\u003c/code\u003e\u003c/a\u003e all: fix some comments\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/golang/crypto/compare/v0.25.0...v0.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\nUpdates `google.golang.org/grpc` from 1.64.1 to 1.70.0\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/grpc/grpc-go/releases\"\u003egoogle.golang.org/grpc's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003eRelease 1.79.3\u003c/h2\u003e\n\u003ch1\u003eSecurity\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eserver: fix an authorization bypass where malformed :path headers (missing the leading slash) could bypass path-based restricted \u0026quot;deny\u0026quot; rules in interceptors like \u003ccode\u003egrpc/authz\u003c/code\u003e. Any request with a non-canonical path is now immediately rejected with an \u003ccode\u003eUnimplemented\u003c/code\u003e error. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8981\"\u003e#8981\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.2\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003estats: Prevent redundant error logging in health/ORCA producers by skipping stats/tracing processing when no stats handler is configured. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8874\"\u003egrpc/grpc-go#8874\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.1\u003c/h2\u003e\n\u003ch1\u003eBug Fixes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003egrpc: Remove the \u003ccode\u003e-dev\u003c/code\u003e suffix from the User-Agent header. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/pull/8902\"\u003egrpc/grpc-go#8902\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eRelease 1.79.0\u003c/h2\u003e\n\u003ch1\u003eAPI Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003emem: Add experimental API \u003ccode\u003eSetDefaultBufferPool\u003c/code\u003e to change the default buffer pool. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8806\"\u003e#8806\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/vanja-p\"\u003e\u003ccode\u003e@​vanja-p\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003eexperimental/stats: Update \u003ccode\u003eMetricsRecorder\u003c/code\u003e to require embedding the new \u003ccode\u003eUnimplementedMetricsRecorder\u003c/code\u003e (a no-op struct) in all implementations for forward compatibility. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eBehavior Changes\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003ebalancer/weightedtarget: Remove handling of \u003ccode\u003eAddresses\u003c/code\u003e and only handle \u003ccode\u003eEndpoints\u003c/code\u003e in resolver updates. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8841\"\u003e#8841\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch1\u003eNew Features\u003c/h1\u003e\n\u003cul\u003e\n\u003cli\u003eexperimental/stats: Add support for asynchronous gauge metrics through the new \u003ccode\u003eAsyncMetricReporter\u003c/code\u003e and \u003ccode\u003eRegisterAsyncReporter\u003c/code\u003e APIs. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8780\"\u003e#8780\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003epickfirst: Add support for weighted random shuffling of endpoints, as described in \u003ca href=\"https://redirect.github.com/grpc/proposal/pull/535\"\u003egRFC A113\u003c/a\u003e.\n\u003cul\u003e\n\u003cli\u003eThis is enabled by default, and can be turned off using the environment variable \u003ccode\u003eGRPC_EXPERIMENTAL_PF_WEIGHTED_SHUFFLING\u003c/code\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8864\"\u003e#8864\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/li\u003e\n\u003cli\u003exds: Implement \u003ccode\u003e:authority\u003c/code\u003e rewriting, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A81-xds-authority-rewriting.md\"\u003egRFC A81\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8779\"\u003e#8779\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003ebalancer/randomsubsetting: Implement the \u003ccode\u003erandom_subsetting\u003c/code\u003e LB policy, as specified in \u003ca href=\"https://github.com/grpc/proposal/blob/master/A68-random-subsetting.md\"\u003egRFC A68\u003c/a\u003e. (\u003ca href=\"https://redirect.github.com/grpc/grpc-go/issues/8650\"\u003e#8650\u003c/a\u003e)\n\u003cul\u003e\n\u003cli\u003eSpecial Thanks: \u003ca href=\"https://github.com/marek-szews\"\u003e\u003ccode\u003e@​marek-szews\u003c/code\u003e\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/...\n\n_Description has been truncated_","html_url":"https://github.com/c6ai/cosmos-sdk/pull/19","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/c6ai%2Fcosmos-sdk/issues/19","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/19/packages"}}]}