Sourced from github.com/golang-migrate/migrate/v4's releases.

v4.19.1

What's Changed

• Bump github.com/dvsekhvalnov/jose2go from 1.6.0 to 1.7.0 by @​dependabot[bot] in golang-migrate/migrate#1334
• Update docker image to use go 1.25, addressing vulnerabilities by @​matsoob in golang-migrate/migrate#1333
• Bump golang.org/x/crypto from 0.36.0 to 0.45.0 by @​dependabot[bot] in golang-migrate/migrate#1335
• fix linter issues by @​HaraldNordgren in golang-migrate/migrate#1325
• Rename databaseName to databaseDriverName by @​iamonah in golang-migrate/migrate#1304
• chore: Update cloud.google.com/go/spanner version by @​jferrl in golang-migrate/migrate#1330
• Bump golang.org/x/crypto from 0.43.0 to 0.45.0 by @​dependabot[bot] in golang-migrate/migrate#1336
• chore: remove dependency on "hashicorp/go-multierror" by @​leonklingele in golang-migrate/migrate#1322

New Contributors

• @​matsoob made their first contribution in golang-migrate/migrate#1333
• @​iamonah made their first contribution in golang-migrate/migrate#1304
• @​jferrl made their first contribution in golang-migrate/migrate#1330
• @​leonklingele made their first contribution in golang-migrate/migrate#1322

Full Changelog: https://github.com/golang-migrate/migrate/compare/v4.19.0...v4.19.1

v4.19.0

What's Changed

• Fixed sqlserver not actually getting a lock if lock is already set by @​urbim in golang-migrate/migrate#1186
• Bump golang.org/x/oauth2 from 0.18.0 to 0.27.0 by @​dependabot[bot] in golang-migrate/migrate#1299
• Update apt-key to gpg by @​sandhilt in golang-migrate/migrate#1277
• Update dktest to v0.4.6 for docker vuln fix by @​dhui in golang-migrate/migrate#1309
• refactor: Remove go.uber.org/atomic in favor of std sync/atomic by @​romshark in golang-migrate/migrate#1303
• Ensure bufferWriter is always closed in Migration.Buffer and propagate close errors by @​ckantcs in golang-migrate/migrate#1308
• Add support for Go 1.25 and drop support for 1.23 by @​dhui in golang-migrate/migrate#1310

New Contributors

• @​urbim made their first contribution in golang-migrate/migrate#1186
• @​sandhilt made their first contribution in golang-migrate/migrate#1277
• @​romshark made their first contribution in golang-migrate/migrate#1303
• @​ckantcs made their first contribution in golang-migrate/migrate#1308

Full Changelog: https://github.com/golang-migrate/migrate/compare/v4.18.3...v4.19.0

v4.18.3

Changelog

• a4d0a1b Bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2
• f37ef79 Bump golang.org/x/crypto from 0.31.0 to 0.35.0
• 5b97c92 Bump golang.org/x/net from 0.33.0 to 0.38.0
• e6d84f6 Drop support for Go 1.22 and add support for Go 1.24
• fccd197 Mention CLI install instructions in main README
• 34c2b4a Remove redundant build tags
• a868033 Update FAQ.md - typo
• 7269490 Update golangci-lint version used in GitHub Actions
• c5137c4 Update migrate -help output for the readme file
• 033835a Update to dktest v0.4.5
• 8b09191 fix: typo limited not limitted

... (truncated)

• 89e308c chore: remove dependency on "hashicorp/go-multierror" (#1322)
• 472ef2e Merge pull request #1336 from golang-migrate/dependabot/go_modules/golang.org...
• 8d76259 Bump golang.org/x/crypto from 0.43.0 to 0.45.0
• 9f9df7c chore: Update cloud.google.com/go/spanner version (#1330)
• a371c8e Merge pull request #1304 from iamonah/fix/clarify-databaseName-meaning
• 43cc3b3 Merge pull request #1325 from HaraldNordgren/linter_issues
• f939a89 Merge pull request #1335 from golang-migrate/dependabot/go_modules/golang.org...
• 6dd86e0 Bump golang.org/x/crypto from 0.36.0 to 0.45.0
• 70e6d6d Merge pull request #1333 from matsoob/updateGoInBaseImage
• a51d0da Merge pull request #1334 from golang-migrate/dependabot/go_modules/github.com...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)