Skip to content

chore(deps): bump the go-minor group across 2 directories with 3 updates#4906

Open
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/go_modules/go-minor-5431284301
Open

chore(deps): bump the go-minor group across 2 directories with 3 updates#4906
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/go_modules/go-minor-5431284301

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 27, 2026

Bumps the go-minor group with 2 updates in the / directory: github.com/go-git/go-git/v5 and golang.org/x/net.
Bumps the go-minor group with 1 update in the /pkg directory: github.com/oapi-codegen/runtime.

Updates github.com/go-git/go-git/v5 from 5.16.5 to 5.17.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.17.0

What's Changed

Full Changelog: go-git/go-git@v5.16.5...v5.17.0

Commits
  • bdf0688 Merge pull request #1864 from pjbgf/v5-issue-55
  • 5290e52 storage: filesystem, Avoid overwriting loose obj files. Fixes #55
  • 5d20a62 storage: filesystem, Fix permissions for loose and packed objs
  • 8ed442c backport, git: Improve Status() speed with new index.ModTime check (#1862)
  • c7b5960 build: Align test workflow with main
  • 8e71edf git: Add strict checks for supported extensions
  • 438a37f git: worktree, optimize infiles function for very large repos (#1853)
  • 67c7006 Merge pull request #1839 from go-git/renovate/releases/v5.x-go-github.com-go-...
  • 4ca3f02 build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY]
  • See full diff in compare view

Updates golang.org/x/net from 0.50.0 to 0.51.0

Commits
  • 60b3f6f internal/http3: prevent Server handler from writing longer body than declared
  • b0ca456 internal/http3: fix Write in Server Handler returning the wrong value
  • 1558ba7 publicsuffix: update to 2026-02-06
  • 4e1c745 internal/http3: make Server response include headers that can be inferred
  • 19f580f http2: fix nil panic in typeFrameParser for unassigned frame types
  • 818aad7 internal/http3: add server to client trailer header support
  • c1bbe1a internal/http3: add client to server trailer header support
  • 29181b8 all: remove go1.25 and older build constraints
  • 8109305 all: upgrade go directive to at least 1.25.0 [generated]
  • 0b37bdf quic: don't run TestStreamsCreateConcurrency in synctest bubble
  • Additional commits viewable in compare view

Updates github.com/oapi-codegen/runtime from 1.1.2 to 1.2.0

Release notes

Sourced from github.com/oapi-codegen/runtime's releases.

Parameter binding extensions, bug fixes, dependency updates

Notable Changes

The main change in this release is the addition of new Parameter binding and styling functions, which allow the code generator to pass in the type and format from the spec. Previously, we inferred what we wanted to do based on the destination type, however, it's not always possible to decide this without information about the specification.

🚀 New features and improvements

🐛 Bug fixes

👻 Maintenance

📦 Dependency updates

  • chore(deps): update release-drafter/release-drafter action to v6 (#31) @renovate[bot]

Sponsors

We would like to thank our sponsors for their support during this release.

... (truncated)

Commits
  • b76a24f fix: bind Date and Time query params as scalar values (#21) (#93)
  • 1f844c3 feat: add BindRawQueryParameter for correct comma handling (#92)
  • ca4e933 fix: support non-indexed deepObject array unmarshaling (#22) (#96)
  • ead11e4 fix: correct time.Time date-only fallback parsing in deepObject (#95)
  • 224825a fix: add Type/Format-aware parameter binding and styling for []byte (#97) (#98)
  • 03288f9 Refactor date parsing error handling (#88)
  • effec1a feat(fix): bump gin version (#51)
  • 53a813b fix: improve email validation using net/mail package (#60)
  • 451d249 Update golang.org/x/crypto to v0.32.0 (#59)
  • 7dffa6e Updated Golang reference to address security vulnerability (#57)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the go-minor group across 2 directories with 3 updates
bbe8f64 
Bumps the go-minor group with 2 updates in the / directory: [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) and [golang.org/x/net](https://github.com/golang/net).
Bumps the go-minor group with 1 update in the /pkg directory: [github.com/oapi-codegen/runtime](https://github.com/oapi-codegen/runtime).


Updates `github.com/go-git/go-git/v5` from 5.16.5 to 5.17.0
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](go-git/go-git@v5.16.5...v5.17.0)

Updates `golang.org/x/net` from 0.50.0 to 0.51.0
- [Commits](golang/net@v0.50.0...v0.51.0)

Updates `github.com/oapi-codegen/runtime` from 1.1.2 to 1.2.0
- [Release notes](https://github.com/oapi-codegen/runtime/releases)
- [Commits](oapi-codegen/runtime@v1.1.2...v1.2.0)

---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
  dependency-version: 5.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor
- dependency-name: golang.org/x/net
  dependency-version: 0.51.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor
- dependency-name: github.com/oapi-codegen/runtime
  dependency-version: 1.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 27, 2026
@dependabot dependabot bot requested a review from a team as a code owner February 27, 2026 00:10
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 27, 2026
@dependabot dependabot bot mentioned this pull request Feb 27, 2026
Closed
@github-actions github-actions bot enabled auto-merge (squash) February 27, 2026 00:11
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@supabase-cli-releaser supabase-cli-releaser[bot] supabase-cli-releaser[bot] approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants