{"id":85796,"name":"dexidp/dex","ecosystem":"helm","repository_url":null,"issues_count":2,"created_at":"2026-02-24T06:01:17.228Z","updated_at":"2026-02-24T06:01:17.228Z","purl":"pkg:helm/dexidp/dex","unique_repositories_count":2,"unique_repositories_count_past_30_days":1,"recent_issues":[{"uuid":"4372549064","node_id":"PR_kwDOQt-gJc7XzmXm","number":49,"state":"closed","title":"k8s(argocd): bump dexidp/dex from v2.43.0 to v2.45.1 in /k8s/argocd","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-03T18:03:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-03T17:59:32.000Z","updated_at":"2026-05-03T18:03:29.000Z","time_to_close":229,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"k8s(argocd)","packages":[{"name":"dexidp/dex","old_version":"v2.43.0","new_version":"v2.45.1","repository_url":"https://github.com/dexidp/dex"}],"path":"/k8s/argocd","ecosystem":"helm"},"body":"Bumps [dexidp/dex](https://github.com/dexidp/dex) from v2.43.0 to v2.45.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.45.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eQuote \u003ccode\u003egroups\u003c/code\u003e reserved word in query replacer to fix MySQL 8.0+ storage migration (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4580\"\u003e#4580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003eauthproxy\u003c/code\u003e and \u003ccode\u003eoauth\u003c/code\u003e to match CallbackConnector interface (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4589\"\u003e#4589\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dexidp/dex/compare/v2.45.0...v2.45.1\"\u003ehttps://github.com/dexidp/dex/compare/v2.45.0...v2.45.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.45.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eKnow Before Upgrade\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe major version of \u003ccode\u003egomplate\u003c/code\u003e has been bumped to v5.0.0, which includes breaking changes. Here is \u003ca href=\"https://github.com/hairyhenderson/gomplate/releases/tag/v5.0.0\"\u003ethe full list\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eThere are two known CVEs in the \u003ccode\u003egomplate\u003c/code\u003e binary - \u003ccode\u003eCVE-2025-68121\u003c/code\u003e and \u003ccode\u003eCVE-2026-25934\u003c/code\u003e. \u003ccode\u003egomplate\u003c/code\u003e is only used for preprocessing configuration files and is optional. Once the CVEs are fixed upstream, the version of gomplate in the dex image will be updated accordingly.\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag is now enabled by default. To disable it, use the following environment variable: \u003ccode\u003eDEX_CONTINUE_ON_CONNECTOR_FAILURE=false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ePre-release versions of dex now use pseudo-versioning for identifying releases. Unreleased versions will follow the pattern \u003ccode\u003ev2.minor+1.0-yyyymmdd-commithash\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eExciting New Features 🎉\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support to PKCE in OIDC connector by \u003ca href=\"https://github.com/johnvan7\"\u003e\u003ccode\u003e@​johnvan7\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3777\"\u003edexidp/dex#3777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Vault signer for JWT by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4512\"\u003edexidp/dex#4512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport groups and preferred_username for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4456\"\u003edexidp/dex#4456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd name and email_verified fields for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4526\"\u003edexidp/dex#4526\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eExample app pkce by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4284\"\u003edexidp/dex#4284\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly wrap IPv6 addresses in brackets by \u003ca href=\"https://github.com/rene-dekker\"\u003e\u003ccode\u003e@​rene-dekker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4388\"\u003edexidp/dex#4388\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate distroless base image to debian13 by \u003ca href=\"https://github.com/loosebazooka\"\u003e\u003ccode\u003e@​loosebazooka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4453\"\u003edexidp/dex#4453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHide internal server error details from users by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4457\"\u003edexidp/dex#4457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGitlab support custom rootCAData by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4496\"\u003edexidp/dex#4496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4495\"\u003edexidp/dex#4495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtend example configs for idEnv and public by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4443\"\u003edexidp/dex#4443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unprivileged user setup in Dockerfile by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4517\"\u003edexidp/dex#4517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd conformance tests for Vault signer integration by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4520\"\u003edexidp/dex#4520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CRD handling behavior and configuration options by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4543\"\u003edexidp/dex#4543\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance git-version script to generate pseudo-versions by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4553\"\u003edexidp/dex#4553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate redirect URIs and safely append parameters by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4559\"\u003edexidp/dex#4559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor example-app with a new config by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4569\"\u003edexidp/dex#4569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement device code flow in example-app by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4570\"\u003edexidp/dex#4570\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not wrap Kubernetes Address in brackets by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4363\"\u003edexidp/dex#4363\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDevice callback URL needs to handle a / by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4448\"\u003edexidp/dex#4448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSuppress deprecation warning for userAttr when not set by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4539\"\u003edexidp/dex#4539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse correct id value for label by \u003ca href=\"https://github.com/loganripplinger\"\u003e\u003ccode\u003e@​loganripplinger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4541\"\u003edexidp/dex#4541\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRespond with forbidden if failed to authenticate by \u003ca href=\"https://github.com/aljoshare\"\u003e\u003ccode\u003e@​aljoshare\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4200\"\u003edexidp/dex#4200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/dexidp/dex/api/v2 from 2.3.0 to 2.4.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4299\"\u003edexidp/dex#4299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4304\"\u003edexidp/dex#4304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.33.0 to 0.33.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4305\"\u003edexidp/dex#4305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/11d2eeb52b42e1980e14cb91e69dd9e3faab2076\"\u003e\u003ccode\u003e11d2eeb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4604\"\u003e#4604\u003c/a\u003e from deckhouse/2.45.1-prepare-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/eaa45e2ca59df692d2b9d7ffcd0830d8907f5e60\"\u003e\u003ccode\u003eeaa45e2\u003c/code\u003e\u003c/a\u003e fix(mysql): quote \u003ccode\u003egroups\u003c/code\u003e reserved word in query replacer (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4580\"\u003e#4580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/204dbb2e3ff7692af3b7ca4362b1ee46fb43c227\"\u003e\u003ccode\u003e204dbb2\u003c/code\u003e\u003c/a\u003e fix(connector): update authproxy and oauth to match CallbackConnector interfa...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/bcc2283694018a59e9b84c43c6c50ce996e9409b\"\u003e\u003ccode\u003ebcc2283\u003c/code\u003e\u003c/a\u003e feat: enhance test commands to support GitHub Actions formatting (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4575\"\u003e#4575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ec26e19e7943de816f61b49a71a8bd126e38e705\"\u003e\u003ccode\u003eec26e19\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.32.3 to 4.32.4 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4573\"\u003e#4573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/51c66d252391c901cc931b9e437f8a685467b6bb\"\u003e\u003ccode\u003e51c66d2\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.34.0 to 0.34.1 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4574\"\u003e#4574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8db7699e0f5fbcd552fd6db671c54006c77ea8ce\"\u003e\u003ccode\u003e8db7699\u003c/code\u003e\u003c/a\u003e feat: implement device code flow in example-app (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4570\"\u003e#4570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/cf17fc68c8e627e9a2c316d19af21c6f49683251\"\u003e\u003ccode\u003ecf17fc6\u003c/code\u003e\u003c/a\u003e test: update HandleCallback after merging OIDC PKCE (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4572\"\u003e#4572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/83697b06a680ade01bde2a063347dbbc04d0a2ec\"\u003e\u003ccode\u003e83697b0\u003c/code\u003e\u003c/a\u003e fix(server): respond with forbidden if failed to authenticate (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4200\"\u003e#4200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/25591eeaf41a5bd8039e5421cca7a794e6c9f112\"\u003e\u003ccode\u003e25591ee\u003c/code\u003e\u003c/a\u003e Add support to PKCE in OIDC connector (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/3777\"\u003e#3777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.43.0...v2.45.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dexidp/dex\u0026package-manager=docker\u0026previous-version=v2.43.0\u0026new-version=v2.45.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/TheRayquaza/home-cluster/pull/49","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheRayquaza%2Fhome-cluster/issues/49","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/49/packages"},{"uuid":"3981392301","node_id":"PR_kwDOHnZjEc7Fz-kG","number":2074,"state":"open","title":"build(deps): bump dexidp/dex from v2.44.0 to v2.45.0 in /hack/tests","user":"dependabot[bot]","labels":["dependencies","docker_compose"],"assignees":["BeryJu"],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-24T04:08:56.000Z","updated_at":"2026-02-24T04:15:51.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"dexidp/dex","old_version":"v2.44.0","new_version":"v2.45.0","repository_url":"https://github.com/dexidp/dex"}],"path":"/hack/tests","ecosystem":"helm"},"body":"Bumps [dexidp/dex](https://github.com/dexidp/dex) from v2.44.0 to v2.45.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.45.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eKnow Before Upgrade\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe major version of \u003ccode\u003egomplate\u003c/code\u003e has been bumped to v5.0.0, which includes breaking changes. Here is \u003ca href=\"https://github.com/hairyhenderson/gomplate/releases/tag/v5.0.0\"\u003ethe full list\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eThere are two known CVEs in the \u003ccode\u003egomplate\u003c/code\u003e binary - \u003ccode\u003eCVE-2025-68121\u003c/code\u003e and \u003ccode\u003eCVE-2026-25934\u003c/code\u003e. \u003ccode\u003egomplate\u003c/code\u003e is only used for preprocessing configuration files and is optional. Once the CVEs are fixed upstream, the version of gomplate in the dex image will be updated accordingly.\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag is now enabled by default. To disable it, use the following environment variable: \u003ccode\u003eDEX_CONTINUE_ON_CONNECTOR_FAILURE=false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ePre-release versions of dex now use pseudo-versioning for identifying releases. Unreleased versions will follow the pattern \u003ccode\u003ev2.minor+1.0-yyyymmdd-commithash\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eExciting New Features 🎉\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support to PKCE in OIDC connector by \u003ca href=\"https://github.com/johnvan7\"\u003e\u003ccode\u003e@​johnvan7\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3777\"\u003edexidp/dex#3777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Vault signer for JWT by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4512\"\u003edexidp/dex#4512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport groups and preferred_username for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4456\"\u003edexidp/dex#4456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd name and email_verified fields for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4526\"\u003edexidp/dex#4526\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eExample app pkce by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4284\"\u003edexidp/dex#4284\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly wrap IPv6 addresses in brackets by \u003ca href=\"https://github.com/rene-dekker\"\u003e\u003ccode\u003e@​rene-dekker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4388\"\u003edexidp/dex#4388\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate distroless base image to debian13 by \u003ca href=\"https://github.com/loosebazooka\"\u003e\u003ccode\u003e@​loosebazooka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4453\"\u003edexidp/dex#4453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHide internal server error details from users by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4457\"\u003edexidp/dex#4457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGitlab support custom rootCAData by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4496\"\u003edexidp/dex#4496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4495\"\u003edexidp/dex#4495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtend example configs for idEnv and public by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4443\"\u003edexidp/dex#4443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unprivileged user setup in Dockerfile by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4517\"\u003edexidp/dex#4517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd conformance tests for Vault signer integration by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4520\"\u003edexidp/dex#4520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CRD handling behavior and configuration options by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4543\"\u003edexidp/dex#4543\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance git-version script to generate pseudo-versions by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4553\"\u003edexidp/dex#4553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate redirect URIs and safely append parameters by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4559\"\u003edexidp/dex#4559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor example-app with a new config by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4569\"\u003edexidp/dex#4569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement device code flow in example-app by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4570\"\u003edexidp/dex#4570\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not wrap Kubernetes Address in brackets by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4363\"\u003edexidp/dex#4363\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDevice callback URL needs to handle a / by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4448\"\u003edexidp/dex#4448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSuppress deprecation warning for userAttr when not set by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4539\"\u003edexidp/dex#4539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse correct id value for label by \u003ca href=\"https://github.com/loganripplinger\"\u003e\u003ccode\u003e@​loganripplinger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4541\"\u003edexidp/dex#4541\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRespond with forbidden if failed to authenticate by \u003ca href=\"https://github.com/aljoshare\"\u003e\u003ccode\u003e@​aljoshare\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4200\"\u003edexidp/dex#4200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/dexidp/dex/api/v2 from 2.3.0 to 2.4.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4299\"\u003edexidp/dex#4299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4304\"\u003edexidp/dex#4304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.33.0 to 0.33.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4305\"\u003edexidp/dex#4305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang from 1.25.0-alpine3.22 to 1.25.1-alpine3.22 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4307\"\u003edexidp/dex#4307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump distroless/static-debian12 from \u003ccode\u003ea9f88e0\u003c/code\u003e to \u003ccode\u003ee8a4044\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4313\"\u003edexidp/dex#4313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump oras-project/setup-oras from 1.2.3 to 1.2.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4314\"\u003edexidp/dex#4314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.11 to 3.30.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4320\"\u003edexidp/dex#4320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4324\"\u003edexidp/dex#4324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4302\"\u003edexidp/dex#4302\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/prometheus/client_golang from 1.23.0 to 1.23.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4309\"\u003edexidp/dex#4309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump tonistiigi/xx from 1.6.1 to 1.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4317\"\u003edexidp/dex#4317\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4310\"\u003edexidp/dex#4310\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4311\"\u003edexidp/dex#4311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/bcc2283694018a59e9b84c43c6c50ce996e9409b\"\u003e\u003ccode\u003ebcc2283\u003c/code\u003e\u003c/a\u003e feat: enhance test commands to support GitHub Actions formatting (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4575\"\u003e#4575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ec26e19e7943de816f61b49a71a8bd126e38e705\"\u003e\u003ccode\u003eec26e19\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.32.3 to 4.32.4 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4573\"\u003e#4573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/51c66d252391c901cc931b9e437f8a685467b6bb\"\u003e\u003ccode\u003e51c66d2\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.34.0 to 0.34.1 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4574\"\u003e#4574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8db7699e0f5fbcd552fd6db671c54006c77ea8ce\"\u003e\u003ccode\u003e8db7699\u003c/code\u003e\u003c/a\u003e feat: implement device code flow in example-app (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4570\"\u003e#4570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/cf17fc68c8e627e9a2c316d19af21c6f49683251\"\u003e\u003ccode\u003ecf17fc6\u003c/code\u003e\u003c/a\u003e test: update HandleCallback after merging OIDC PKCE (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4572\"\u003e#4572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/83697b06a680ade01bde2a063347dbbc04d0a2ec\"\u003e\u003ccode\u003e83697b0\u003c/code\u003e\u003c/a\u003e fix(server): respond with forbidden if failed to authenticate (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4200\"\u003e#4200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/25591eeaf41a5bd8039e5421cca7a794e6c9f112\"\u003e\u003ccode\u003e25591ee\u003c/code\u003e\u003c/a\u003e Add support to PKCE in OIDC connector (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/3777\"\u003e#3777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/5d27abc1179fa3d8593c8de65bd52dc8e096fa8f\"\u003e\u003ccode\u003e5d27abc\u003c/code\u003e\u003c/a\u003e feat: refactor example-app with a new config (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4569\"\u003e#4569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/08079303c9b992b07ee6d18f5c1b9fc64d2ced56\"\u003e\u003ccode\u003e0807930\u003c/code\u003e\u003c/a\u003e feat: add debug step to check image metadata in workflow (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4566\"\u003e#4566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/49c8228d304e84eb5845f7ef6c923c0fb839b82d\"\u003e\u003ccode\u003e49c8228\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/dependency-review-action from 4.8.2 to 4.8.3 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4563\"\u003e#4563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.44.0...v2.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dexidp/dex\u0026package-manager=docker_compose\u0026previous-version=v2.44.0\u0026new-version=v2.45.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/BeryJu/gravity/pull/2074","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BeryJu%2Fgravity/issues/2074","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2074/packages"}],"issue_packages":[{"old_version":"v2.43.0","new_version":"v2.45.1","update_type":"minor","path":"/k8s/argocd","pr_created_at":"2026-05-03T17:59:32.000Z","version_change":"v2.43.0 → v2.45.1","issue":{"uuid":"4372549064","node_id":"PR_kwDOQt-gJc7XzmXm","number":49,"state":"closed","title":"k8s(argocd): bump dexidp/dex from v2.43.0 to v2.45.1 in /k8s/argocd","user":"dependabot[bot]","labels":["dependencies"],"assignees":[],"locked":false,"comments_count":1,"pull_request":true,"closed_at":"2026-05-03T18:03:21.000Z","author_association":null,"state_reason":null,"created_at":"2026-05-03T17:59:32.000Z","updated_at":"2026-05-03T18:03:29.000Z","time_to_close":229,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"k8s(argocd)","packages":[{"name":"dexidp/dex","old_version":"v2.43.0","new_version":"v2.45.1","repository_url":"https://github.com/dexidp/dex"}],"path":"/k8s/argocd","ecosystem":"helm"},"body":"Bumps [dexidp/dex](https://github.com/dexidp/dex) from v2.43.0 to v2.45.1.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.45.1\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eQuote \u003ccode\u003egroups\u003c/code\u003e reserved word in query replacer to fix MySQL 8.0+ storage migration (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4580\"\u003e#4580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eUpdate \u003ccode\u003eauthproxy\u003c/code\u003e and \u003ccode\u003eoauth\u003c/code\u003e to match CallbackConnector interface (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4589\"\u003e#4589\u003c/a\u003e)\u003c/li\u003e\n\u003c/ul\u003e\n\u003cp\u003e\u003cstrong\u003eFull Changelog\u003c/strong\u003e: \u003ca href=\"https://github.com/dexidp/dex/compare/v2.45.0...v2.45.1\"\u003ehttps://github.com/dexidp/dex/compare/v2.45.0...v2.45.1\u003c/a\u003e\u003c/p\u003e\n\u003ch2\u003ev2.45.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eKnow Before Upgrade\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe major version of \u003ccode\u003egomplate\u003c/code\u003e has been bumped to v5.0.0, which includes breaking changes. Here is \u003ca href=\"https://github.com/hairyhenderson/gomplate/releases/tag/v5.0.0\"\u003ethe full list\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eThere are two known CVEs in the \u003ccode\u003egomplate\u003c/code\u003e binary - \u003ccode\u003eCVE-2025-68121\u003c/code\u003e and \u003ccode\u003eCVE-2026-25934\u003c/code\u003e. \u003ccode\u003egomplate\u003c/code\u003e is only used for preprocessing configuration files and is optional. Once the CVEs are fixed upstream, the version of gomplate in the dex image will be updated accordingly.\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag is now enabled by default. To disable it, use the following environment variable: \u003ccode\u003eDEX_CONTINUE_ON_CONNECTOR_FAILURE=false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ePre-release versions of dex now use pseudo-versioning for identifying releases. Unreleased versions will follow the pattern \u003ccode\u003ev2.minor+1.0-yyyymmdd-commithash\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eExciting New Features 🎉\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support to PKCE in OIDC connector by \u003ca href=\"https://github.com/johnvan7\"\u003e\u003ccode\u003e@​johnvan7\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3777\"\u003edexidp/dex#3777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Vault signer for JWT by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4512\"\u003edexidp/dex#4512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport groups and preferred_username for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4456\"\u003edexidp/dex#4456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd name and email_verified fields for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4526\"\u003edexidp/dex#4526\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eExample app pkce by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4284\"\u003edexidp/dex#4284\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly wrap IPv6 addresses in brackets by \u003ca href=\"https://github.com/rene-dekker\"\u003e\u003ccode\u003e@​rene-dekker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4388\"\u003edexidp/dex#4388\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate distroless base image to debian13 by \u003ca href=\"https://github.com/loosebazooka\"\u003e\u003ccode\u003e@​loosebazooka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4453\"\u003edexidp/dex#4453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHide internal server error details from users by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4457\"\u003edexidp/dex#4457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGitlab support custom rootCAData by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4496\"\u003edexidp/dex#4496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4495\"\u003edexidp/dex#4495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtend example configs for idEnv and public by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4443\"\u003edexidp/dex#4443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unprivileged user setup in Dockerfile by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4517\"\u003edexidp/dex#4517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd conformance tests for Vault signer integration by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4520\"\u003edexidp/dex#4520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CRD handling behavior and configuration options by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4543\"\u003edexidp/dex#4543\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance git-version script to generate pseudo-versions by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4553\"\u003edexidp/dex#4553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate redirect URIs and safely append parameters by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4559\"\u003edexidp/dex#4559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor example-app with a new config by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4569\"\u003edexidp/dex#4569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement device code flow in example-app by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4570\"\u003edexidp/dex#4570\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not wrap Kubernetes Address in brackets by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4363\"\u003edexidp/dex#4363\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDevice callback URL needs to handle a / by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4448\"\u003edexidp/dex#4448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSuppress deprecation warning for userAttr when not set by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4539\"\u003edexidp/dex#4539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse correct id value for label by \u003ca href=\"https://github.com/loganripplinger\"\u003e\u003ccode\u003e@​loganripplinger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4541\"\u003edexidp/dex#4541\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRespond with forbidden if failed to authenticate by \u003ca href=\"https://github.com/aljoshare\"\u003e\u003ccode\u003e@​aljoshare\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4200\"\u003edexidp/dex#4200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/dexidp/dex/api/v2 from 2.3.0 to 2.4.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4299\"\u003edexidp/dex#4299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4304\"\u003edexidp/dex#4304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.33.0 to 0.33.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4305\"\u003edexidp/dex#4305\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/11d2eeb52b42e1980e14cb91e69dd9e3faab2076\"\u003e\u003ccode\u003e11d2eeb\u003c/code\u003e\u003c/a\u003e Merge pull request \u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4604\"\u003e#4604\u003c/a\u003e from deckhouse/2.45.1-prepare-release\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/eaa45e2ca59df692d2b9d7ffcd0830d8907f5e60\"\u003e\u003ccode\u003eeaa45e2\u003c/code\u003e\u003c/a\u003e fix(mysql): quote \u003ccode\u003egroups\u003c/code\u003e reserved word in query replacer (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4580\"\u003e#4580\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/204dbb2e3ff7692af3b7ca4362b1ee46fb43c227\"\u003e\u003ccode\u003e204dbb2\u003c/code\u003e\u003c/a\u003e fix(connector): update authproxy and oauth to match CallbackConnector interfa...\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/bcc2283694018a59e9b84c43c6c50ce996e9409b\"\u003e\u003ccode\u003ebcc2283\u003c/code\u003e\u003c/a\u003e feat: enhance test commands to support GitHub Actions formatting (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4575\"\u003e#4575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ec26e19e7943de816f61b49a71a8bd126e38e705\"\u003e\u003ccode\u003eec26e19\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.32.3 to 4.32.4 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4573\"\u003e#4573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/51c66d252391c901cc931b9e437f8a685467b6bb\"\u003e\u003ccode\u003e51c66d2\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.34.0 to 0.34.1 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4574\"\u003e#4574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8db7699e0f5fbcd552fd6db671c54006c77ea8ce\"\u003e\u003ccode\u003e8db7699\u003c/code\u003e\u003c/a\u003e feat: implement device code flow in example-app (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4570\"\u003e#4570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/cf17fc68c8e627e9a2c316d19af21c6f49683251\"\u003e\u003ccode\u003ecf17fc6\u003c/code\u003e\u003c/a\u003e test: update HandleCallback after merging OIDC PKCE (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4572\"\u003e#4572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/83697b06a680ade01bde2a063347dbbc04d0a2ec\"\u003e\u003ccode\u003e83697b0\u003c/code\u003e\u003c/a\u003e fix(server): respond with forbidden if failed to authenticate (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4200\"\u003e#4200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/25591eeaf41a5bd8039e5421cca7a794e6c9f112\"\u003e\u003ccode\u003e25591ee\u003c/code\u003e\u003c/a\u003e Add support to PKCE in OIDC connector (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/3777\"\u003e#3777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.43.0...v2.45.1\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dexidp/dex\u0026package-manager=docker\u0026previous-version=v2.43.0\u0026new-version=v2.45.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/TheRayquaza/home-cluster/pull/49","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/TheRayquaza%2Fhome-cluster/issues/49","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/49/packages"}},{"old_version":"v2.44.0","new_version":"v2.45.0","update_type":"minor","path":"/hack/tests","pr_created_at":"2026-02-24T04:08:56.000Z","version_change":"v2.44.0 → v2.45.0","issue":{"uuid":"3981392301","node_id":"PR_kwDOHnZjEc7Fz-kG","number":2074,"state":"open","title":"build(deps): bump dexidp/dex from v2.44.0 to v2.45.0 in /hack/tests","user":"dependabot[bot]","labels":["dependencies","docker_compose"],"assignees":["BeryJu"],"locked":false,"comments_count":2,"pull_request":true,"closed_at":null,"author_association":null,"state_reason":null,"created_at":"2026-02-24T04:08:56.000Z","updated_at":"2026-02-24T04:15:51.000Z","time_to_close":null,"merged_at":null,"merged_by":null,"closed_by":null,"dependency_metadata":{"prefix":"build(deps)","packages":[{"name":"dexidp/dex","old_version":"v2.44.0","new_version":"v2.45.0","repository_url":"https://github.com/dexidp/dex"}],"path":"/hack/tests","ecosystem":"helm"},"body":"Bumps [dexidp/dex](https://github.com/dexidp/dex) from v2.44.0 to v2.45.0.\n\u003cdetails\u003e\n\u003csummary\u003eRelease notes\u003c/summary\u003e\n\u003cp\u003e\u003cem\u003eSourced from \u003ca href=\"https://github.com/dexidp/dex/releases\"\u003edexidp/dex's releases\u003c/a\u003e.\u003c/em\u003e\u003c/p\u003e\n\u003cblockquote\u003e\n\u003ch2\u003ev2.45.0\u003c/h2\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003ch2\u003eKnow Before Upgrade\u003c/h2\u003e\n\u003cul\u003e\n\u003cli\u003eThe major version of \u003ccode\u003egomplate\u003c/code\u003e has been bumped to v5.0.0, which includes breaking changes. Here is \u003ca href=\"https://github.com/hairyhenderson/gomplate/releases/tag/v5.0.0\"\u003ethe full list\u003c/a\u003e.\u003c/li\u003e\n\u003cli\u003eThere are two known CVEs in the \u003ccode\u003egomplate\u003c/code\u003e binary - \u003ccode\u003eCVE-2025-68121\u003c/code\u003e and \u003ccode\u003eCVE-2026-25934\u003c/code\u003e. \u003ccode\u003egomplate\u003c/code\u003e is only used for preprocessing configuration files and is optional. Once the CVEs are fixed upstream, the version of gomplate in the dex image will be updated accordingly.\u003c/li\u003e\n\u003cli\u003eThe \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag is now enabled by default. To disable it, use the following environment variable: \u003ccode\u003eDEX_CONTINUE_ON_CONNECTOR_FAILURE=false\u003c/code\u003e.\u003c/li\u003e\n\u003cli\u003ePre-release versions of dex now use pseudo-versioning for identifying releases. Unreleased versions will follow the pattern \u003ccode\u003ev2.minor+1.0-yyyymmdd-commithash\u003c/code\u003e.\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch2\u003eWhat's Changed\u003c/h2\u003e\n\u003ch3\u003eExciting New Features 🎉\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eAdd support to PKCE in OIDC connector by \u003ca href=\"https://github.com/johnvan7\"\u003e\u003ccode\u003e@​johnvan7\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/3777\"\u003edexidp/dex#3777\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd Vault signer for JWT by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4512\"\u003edexidp/dex#4512\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSupport groups and preferred_username for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4456\"\u003edexidp/dex#4456\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd name and email_verified fields for static passwords by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4526\"\u003edexidp/dex#4526\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eEnhancements 🚀\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eExample app pkce by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4284\"\u003edexidp/dex#4284\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eOnly wrap IPv6 addresses in brackets by \u003ca href=\"https://github.com/rene-dekker\"\u003e\u003ccode\u003e@​rene-dekker\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4388\"\u003edexidp/dex#4388\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUpdate distroless base image to debian13 by \u003ca href=\"https://github.com/loosebazooka\"\u003e\u003ccode\u003e@​loosebazooka\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4453\"\u003edexidp/dex#4453\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eHide internal server error details from users by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4457\"\u003edexidp/dex#4457\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eGitlab support custom rootCAData by \u003ca href=\"https://github.com/Jabejixo\"\u003e\u003ccode\u003e@​Jabejixo\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4496\"\u003edexidp/dex#4496\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnable \u003ccode\u003eContinueOnConnectorFailure\u003c/code\u003e feature flag by \u003ca href=\"https://github.com/manojVivek\"\u003e\u003ccode\u003e@​manojVivek\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4495\"\u003edexidp/dex#4495\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eExtend example configs for idEnv and public by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4443\"\u003edexidp/dex#4443\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd unprivileged user setup in Dockerfile by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4517\"\u003edexidp/dex#4517\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd conformance tests for Vault signer integration by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4520\"\u003edexidp/dex#4520\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eAdd CRD handling behavior and configuration options by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4543\"\u003edexidp/dex#4543\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eEnhance git-version script to generate pseudo-versions by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4553\"\u003edexidp/dex#4553\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eValidate redirect URIs and safely append parameters by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4559\"\u003edexidp/dex#4559\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRefactor example-app with a new config by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4569\"\u003edexidp/dex#4569\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eImplement device code flow in example-app by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4570\"\u003edexidp/dex#4570\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eBug Fixes 🐛\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003eDo not wrap Kubernetes Address in brackets by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4363\"\u003edexidp/dex#4363\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eDevice callback URL needs to handle a / by \u003ca href=\"https://github.com/cardoe\"\u003e\u003ccode\u003e@​cardoe\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4448\"\u003edexidp/dex#4448\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eSuppress deprecation warning for userAttr when not set by \u003ca href=\"https://github.com/nabokihms\"\u003e\u003ccode\u003e@​nabokihms\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4539\"\u003edexidp/dex#4539\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eUse correct id value for label by \u003ca href=\"https://github.com/loganripplinger\"\u003e\u003ccode\u003e@​loganripplinger\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4541\"\u003edexidp/dex#4541\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003eRespond with forbidden if failed to authenticate by \u003ca href=\"https://github.com/aljoshare\"\u003e\u003ccode\u003e@​aljoshare\u003c/code\u003e\u003c/a\u003e in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4200\"\u003edexidp/dex#4200\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003ch3\u003eDependency Updates ⬆️\u003c/h3\u003e\n\u003cul\u003e\n\u003cli\u003ebuild(deps): bump github.com/dexidp/dex/api/v2 from 2.3.0 to 2.4.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4299\"\u003edexidp/dex#4299\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump actions/setup-go from 5.5.0 to 6.0.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4304\"\u003edexidp/dex#4304\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump aquasecurity/trivy-action from 0.33.0 to 0.33.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4305\"\u003edexidp/dex#4305\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang from 1.25.0-alpine3.22 to 1.25.1-alpine3.22 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4307\"\u003edexidp/dex#4307\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump distroless/static-debian12 from \u003ccode\u003ea9f88e0\u003c/code\u003e to \u003ccode\u003ee8a4044\u003c/code\u003e by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4313\"\u003edexidp/dex#4313\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump oras-project/setup-oras from 1.2.3 to 1.2.4 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4314\"\u003edexidp/dex#4314\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github/codeql-action from 3.29.11 to 3.30.3 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4320\"\u003edexidp/dex#4320\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump sigstore/cosign-installer from 3.9.2 to 3.10.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4324\"\u003edexidp/dex#4324\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/spf13/cobra from 1.9.1 to 1.10.1 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4302\"\u003edexidp/dex#4302\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump github.com/prometheus/client_golang from 1.23.0 to 1.23.2 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4309\"\u003edexidp/dex#4309\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump tonistiigi/xx from 1.6.1 to 1.7.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4317\"\u003edexidp/dex#4317\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4310\"\u003edexidp/dex#4310\u003c/a\u003e\u003c/li\u003e\n\u003cli\u003ebuild(deps): bump golang.org/x/oauth2 from 0.30.0 to 0.31.0 in /examples by \u003ca href=\"https://github.com/dependabot\"\u003e\u003ccode\u003e@​dependabot\u003c/code\u003e\u003c/a\u003e[bot] in \u003ca href=\"https://redirect.github.com/dexidp/dex/pull/4311\"\u003edexidp/dex#4311\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c!-- raw HTML omitted --\u003e\n\u003c/blockquote\u003e\n\u003cp\u003e... (truncated)\u003c/p\u003e\n\u003c/details\u003e\n\u003cdetails\u003e\n\u003csummary\u003eCommits\u003c/summary\u003e\n\u003cul\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/bcc2283694018a59e9b84c43c6c50ce996e9409b\"\u003e\u003ccode\u003ebcc2283\u003c/code\u003e\u003c/a\u003e feat: enhance test commands to support GitHub Actions formatting (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4575\"\u003e#4575\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/ec26e19e7943de816f61b49a71a8bd126e38e705\"\u003e\u003ccode\u003eec26e19\u003c/code\u003e\u003c/a\u003e build(deps): bump github/codeql-action from 4.32.3 to 4.32.4 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4573\"\u003e#4573\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/51c66d252391c901cc931b9e437f8a685467b6bb\"\u003e\u003ccode\u003e51c66d2\u003c/code\u003e\u003c/a\u003e build(deps): bump aquasecurity/trivy-action from 0.34.0 to 0.34.1 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4574\"\u003e#4574\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/8db7699e0f5fbcd552fd6db671c54006c77ea8ce\"\u003e\u003ccode\u003e8db7699\u003c/code\u003e\u003c/a\u003e feat: implement device code flow in example-app (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4570\"\u003e#4570\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/cf17fc68c8e627e9a2c316d19af21c6f49683251\"\u003e\u003ccode\u003ecf17fc6\u003c/code\u003e\u003c/a\u003e test: update HandleCallback after merging OIDC PKCE (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4572\"\u003e#4572\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/83697b06a680ade01bde2a063347dbbc04d0a2ec\"\u003e\u003ccode\u003e83697b0\u003c/code\u003e\u003c/a\u003e fix(server): respond with forbidden if failed to authenticate (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4200\"\u003e#4200\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/25591eeaf41a5bd8039e5421cca7a794e6c9f112\"\u003e\u003ccode\u003e25591ee\u003c/code\u003e\u003c/a\u003e Add support to PKCE in OIDC connector (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/3777\"\u003e#3777\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/5d27abc1179fa3d8593c8de65bd52dc8e096fa8f\"\u003e\u003ccode\u003e5d27abc\u003c/code\u003e\u003c/a\u003e feat: refactor example-app with a new config (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4569\"\u003e#4569\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/08079303c9b992b07ee6d18f5c1b9fc64d2ced56\"\u003e\u003ccode\u003e0807930\u003c/code\u003e\u003c/a\u003e feat: add debug step to check image metadata in workflow (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4566\"\u003e#4566\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003e\u003ca href=\"https://github.com/dexidp/dex/commit/49c8228d304e84eb5845f7ef6c923c0fb839b82d\"\u003e\u003ccode\u003e49c8228\u003c/code\u003e\u003c/a\u003e build(deps): bump actions/dependency-review-action from 4.8.2 to 4.8.3 (\u003ca href=\"https://redirect.github.com/dexidp/dex/issues/4563\"\u003e#4563\u003c/a\u003e)\u003c/li\u003e\n\u003cli\u003eAdditional commits viewable in \u003ca href=\"https://github.com/dexidp/dex/compare/v2.44.0...v2.45.0\"\u003ecompare view\u003c/a\u003e\u003c/li\u003e\n\u003c/ul\u003e\n\u003c/details\u003e\n\u003cbr /\u003e\n\n\n[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=dexidp/dex\u0026package-manager=docker_compose\u0026previous-version=v2.44.0\u0026new-version=v2.45.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\n\nDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`.\n\n[//]: # (dependabot-automerge-start)\n[//]: # (dependabot-automerge-end)\n\n---\n\n\u003cdetails\u003e\n\u003csummary\u003eDependabot commands and options\u003c/summary\u003e\n\u003cbr /\u003e\n\nYou can trigger Dependabot actions by commenting on this PR:\n- `@dependabot rebase` will rebase this PR\n- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it\n- `@dependabot show \u003cdependency name\u003e ignore conditions` will show all of the ignore conditions of the specified dependency\n- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)\n- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)\n\n\n\u003c/details\u003e","html_url":"https://github.com/BeryJu/gravity/pull/2074","url":"https://dependabot.ecosyste.ms/api/v1/hosts/GitHub/repositories/BeryJu%2Fgravity/issues/2074","packages_url":"https://dependabot.ecosyste.ms/api/v1/issues/2074/packages"}}]}