Skip to content

chore(deps): update security updates#182

Merged
flemzord merged 1 commit intomainfrom
renovate/security
Mar 20, 2026
Merged

chore(deps): update security updates#182
flemzord merged 1 commit intomainfrom
renovate/security

Conversation

@NumaryBot
Copy link
Copy Markdown
Contributor

@NumaryBot NumaryBot commented Mar 19, 2026
edited
Loading

This PR contains the following updates:

Package Type Update Change
github.com/decred/dcrd/dcrec/secp256k1/v4 indirect patch v4.4.0 -> v4.4.1
github.com/formancehq/go-libs/v2 require patch v2.2.3 -> v2.2.4
github.com/formancehq/operator/v3 require minor v3.7.2 -> v3.8.3
github.com/go-chi/chi/v5 indirect patch v5.2.4 -> v5.2.5
github.com/go-openapi/jsonpointer indirect minor v0.21.2 -> v0.22.5
github.com/go-openapi/jsonreference indirect patch v0.21.0 -> v0.21.5
github.com/go-openapi/swag indirect minor v0.23.1 -> v0.25.5
github.com/goccy/go-json indirect patch v0.10.5 -> v0.10.6
github.com/golang-jwt/jwt/v5 indirect minor v5.2.3 -> v5.3.1
github.com/google/gnostic-models indirect patch v0.7.0 -> v0.7.1
github.com/google/pprof indirect digest c008609 -> a15ffb7
github.com/grpc-ecosystem/grpc-gateway/v2 indirect minor v2.27.1 -> v2.28.0
github.com/lestrrat-go/jwx indirect patch v1.2.30 -> v1.2.31
github.com/mailru/easyjson indirect patch v0.9.0 -> v0.9.2
github.com/onsi/ginkgo/v2 require minor v2.27.4 -> v2.28.1
github.com/onsi/gomega require minor v1.38.2 -> v1.39.1
github.com/prometheus/common indirect patch v0.67.2 -> v0.67.5
github.com/prometheus/procfs indirect minor v0.17.0 -> v0.20.1
github.com/sirupsen/logrus indirect patch v1.9.3 -> v1.9.4
github.com/spf13/cobra require minor v1.9.1 -> v1.10.2
github.com/zitadel/logging indirect minor v0.6.2 -> v0.7.0
github.com/zitadel/oidc/v3 require patch v3.45.0 -> v3.45.5
github.com/zitadel/schema indirect patch v1.3.1 -> v1.3.2
go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp indirect minor v0.62.0 -> v0.67.0
go.opentelemetry.io/contrib/propagators/b3 indirect minor v1.37.0 -> v1.42.0
go.opentelemetry.io/otel require minor v1.40.0 -> v1.42.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace indirect minor v1.37.0 -> v1.42.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc indirect minor v1.37.0 -> v1.42.0
go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracehttp indirect minor v1.37.0 -> v1.42.0
go.opentelemetry.io/otel/exporters/stdout/stdouttrace indirect minor v1.37.0 -> v1.42.0
go.opentelemetry.io/otel/log indirect minor v0.13.0 -> v0.18.0
go.opentelemetry.io/otel/metric indirect minor v1.40.0 -> v1.42.0
go.opentelemetry.io/otel/sdk indirect minor v1.40.0 -> v1.42.0
go.opentelemetry.io/otel/trace require minor v1.40.0 -> v1.42.0
go.opentelemetry.io/proto/otlp indirect minor v1.7.0 -> v1.10.0
go.uber.org/mock require minor v0.5.2 -> v0.6.0
go.uber.org/zap indirect patch v1.27.0 -> v1.27.1
go.yaml.in/yaml/v2 indirect patch v2.4.3 -> v2.4.4
golang.org/x/crypto indirect minor v0.47.0 -> v0.49.0
golang.org/x/mod indirect minor v0.31.0 -> v0.34.0
golang.org/x/net indirect minor v0.48.0 -> v0.52.0
golang.org/x/oauth2 require minor v0.34.0 -> v0.36.0
golang.org/x/sync indirect minor v0.19.0 -> v0.20.0
golang.org/x/sys indirect minor v0.40.0 -> v0.42.0
golang.org/x/term indirect minor v0.39.0 -> v0.41.0
golang.org/x/text indirect minor v0.33.0 -> v0.35.0
golang.org/x/time indirect minor v0.14.0 -> v0.15.0
golang.org/x/tools indirect minor v0.40.0 -> v0.43.0
google.golang.org/genproto/googleapis/api indirect digest ff82c1b -> d00831a
google.golang.org/genproto/googleapis/rpc indirect digest ff82c1b -> d00831a
google.golang.org/protobuf require patch v1.36.10 -> v1.36.11
k8s.io/api indirect minor v0.34.2 -> v0.35.3
k8s.io/apiextensions-apiserver require minor v0.34.1 -> v0.35.3
k8s.io/apimachinery require minor v0.34.2 -> v0.35.3
k8s.io/client-go require minor v0.34.2 -> v0.35.3
k8s.io/klog/v2 indirect minor v2.130.1 -> v2.140.0
k8s.io/kube-openapi indirect digest d7b6acb -> 5883c5e
k8s.io/utils indirect digest 0af2bda -> 28399d8
sigs.k8s.io/controller-runtime require minor v0.22.4 -> v0.23.3
sigs.k8s.io/structured-merge-diff/v6 indirect patch v6.3.0 -> v6.3.2

Release Notes

formancehq/go-libs (github.com/formancehq/go-libs/v2)

v2.2.4

Compare Source

formancehq/operator (github.com/formancehq/operator/v3)

v3.8.3

Compare Source

Changelog

Other work

What to do next?

v3.8.2

Compare Source

Changelog

New Features

What to do next?

v3.8.1

Compare Source

What's Changed

New Contributors

Full Changelog: formancehq/operator@v3.8.0...v3.8.1

v3.8.0

Compare Source

Changelog

New Features
Other work

What to do next?

go-chi/chi (github.com/go-chi/chi/v5)

v5.2.5

Compare Source

What's Changed

New Contributors

Full Changelog: go-chi/chi@v5.2.3...v5.2.5

go-openapi/jsonpointer (github.com/go-openapi/jsonpointer)

v0.22.5

Compare Source

0.22.5 - 2026-03-02

Full Changelog: go-openapi/jsonpointer@v0.22.4...v0.22.5

15 commits in this release.

Documentation
Code quality
Miscellaneous tasks
Updates
People who contributed to this release
New Contributors

jsonpointer license terms

License

v0.22.4

Compare Source

0.22.4 - 2025-12-06

Full Changelog: go-openapi/jsonpointer@v0.22.3...v0.22.4

1 commits in this release.

Miscellaneous tasks
People who contributed to this release

jsonpointer license terms

License

v0.22.3

Compare Source

0.22.3 - 2025-11-17

Full Changelog: go-openapi/jsonpointer@v0.22.2...v0.22.3

8 commits in this release.

Documentation
Code quality
Miscellaneous tasks
People who contributed to this release
New Contributors

jsonpointer license terms

License

v0.22.2

Compare Source

0.22.2 - 2025-11-14

Full Changelog: go-openapi/jsonpointer@v0.22.1...v0.22.2

12 commits in this release.

Documentation
Code quality
Testing
Miscellaneous tasks
Security
Updates
People who contributed to this release

jsonpointer license terms

License

v0.22.1

Compare Source

v0.22.0

Compare Source

go-openapi/jsonreference (github.com/go-openapi/jsonreference)

v0.21.5

Compare Source

0.21.5 - 2026-03-02

Full Changelog: go-openapi/jsonreference@v0.21.4...v0.21.5

14 commits in this release.

Documentation
Code quality
Testing
Miscellaneous tasks
Updates
People who contributed to this release

jsonreference license terms

License

v0.21.4

Compare Source

0.21.4 - 2025-12-08

Full Changelog: go-openapi/jsonreference@v0.21.3...v0.21.4

1 commits in this release.

Documentation
People who contributed to this release
New Contributors

jsonreference license terms

License

v0.21.3

Compare Source

v0.21.2

Compare Source

v0.21.1

Compare Source

go-openapi/swag (github.com/go-openapi/swag)

v0.25.5

Compare Source

0.25.5 - 2026-03-02

Full Changelog: go-openapi/swag@v0.25.4...v0.25.5

16 commits in this release.

Documentation
Code quality
Testing
Miscellaneous tasks
Updates
People who contributed to this release
New Contributors

swag license terms

License

Per-module changes

cmdutils (0.25.5)

Testing

conv (0.25.5)

Testing
Miscellaneous tasks
Updates

fileutils (0.25.5)

Testing
Updates

jsonname (0.25.5)

Testing
Updates

jsonutils/adapters/easyjson (0.25.5)

Testing
Miscellaneous tasks
Updates

jsonutils/adapters/testintegration/benchmarks (0.25.5)

Code quality
Testing
Miscellaneous tasks
Updates

jsonutils/adapters/testintegration (0.25.5)

Testing
Miscellaneous tasks
Updates

jsonutils/fixtures_test (0.25.5)

Testing
Updates

jsonutils (0.25.5)

Code quality
Testing
Miscellaneous tasks
Updates

loading (0.25.5)

Testing
Miscellaneous tasks
Updates

mangling (0.25.5)

Code quality
Testing
Updates

netutils (0.25.5)

Testing
Updates

stringutils (0.25.5)

Testing

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR has been generated by Renovate Bot.

@NumaryBot NumaryBot requested a review from a team as a code owner March 19, 2026 17:38
@NumaryBot NumaryBot enabled auto-merge (squash) March 19, 2026 17:38
@NumaryBot
Copy link
Copy Markdown
Contributor Author

NumaryBot commented Mar 19, 2026

ℹ Artifact update notice

File name: go.mod

In order to perform the update(s) described in the table above, Renovate ran the go get command, which resulted in the following additional change(s):

  • The go directive was updated for compatibility reasons

Details:

Package Change
go 1.25 -> 1.25.0

@coderabbitai
Copy link
Copy Markdown

coderabbitai bot commented Mar 19, 2026
edited
Loading

Important

Review skipped

Review was skipped due to path filters

⛔ Files ignored due to path filters (2)
  • go.mod is excluded by !**/*.mod
  • go.sum is excluded by !**/*.sum, !**/*.sum

CodeRabbit blocks several paths by default. You can override this behavior by explicitly including those paths in the path filters. For example, including **/dist/** will override the default block on the dist directory, by removing the pattern from both the lists.

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 003ccc63-2a61-41ef-aa9a-0565964b52ad

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

  • 🔍 Trigger review
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch renovate/security
📝 Coding Plan
  • Generate coding plan for human review comments

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

flemzord
flemzord previously approved these changes Mar 19, 2026
View reviewed changes
@flemzord flemzord merged commit 63d9d65 into main Mar 20, 2026
8 checks passed
@flemzord flemzord deleted the renovate/security branch March 20, 2026 06:48
@codecov
Copy link
Copy Markdown

codecov bot commented Mar 20, 2026

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 0.00%. Comparing base (b2203c1) to head (b08480a).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files 
@@     Coverage Diff     @@
##   main   #182   +/-   ##
===========================
===========================

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@flemzord flemzord flemzord approved these changes

Assignees

No one assigned

Labels

security

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@NumaryBot @flemzord