Skip to content

Bump the all group with 5 updates #151

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump the all group with 5 updates #151

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 1, 2025

Bumps the all group with 5 updates:

Package From To
github.com/cenkalti/backoff/v4 4.2.1 4.3.0
github.com/spf13/cobra 1.8.0 1.10.1
github.com/tdewolff/parse/v2 2.7.11 2.8.5
golang.org/x/net 0.20.0 0.46.0
golang.org/x/sync 0.6.0 0.17.0

Updates github.com/cenkalti/backoff/v4 from 4.2.1 to 4.3.0

Commits
  • 720b789 remove travis badge from readme
  • a83af7f feat(backoff): Add functional options for ExponentialBackOff Closes #136
  • See full diff in compare view

Updates github.com/spf13/cobra from 1.8.0 to 1.10.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.1

🐛 Fix

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

  • If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
  • or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

More details can be found here: spf13/cobra#2303

✨ Features

🐛 Fix

🪠 Testing

📝 Docs

New Contributors

... (truncated)

Commits
  • 7da941c chore: Bump pflag to v1.0.9 (#2305)
  • 51d6751 Bump pflag to 1.0.8 (#2303)
  • 3f3b818 Update README.md with new logo
  • dcaf42e Add Periscope to the list of projects using Cobra (#2299)
  • 6dec1ae The default ShellCompDirective can be customized for a command and its subcom...
  • c8289c1 chore(golangci-lint): add some exclusion presets
  • 4af7b64 refactor: apply golangci-lint autofixes, work around false positives
  • 75790e4 chore(golangci-lint): upgrade to v2
  • db3ddb5 Adding sponsorship to README.md
  • 67171d6 putting sponsorship below header
  • Additional commits viewable in compare view

Updates github.com/tdewolff/parse/v2 from 2.7.11 to 2.8.5

Release notes

Sourced from github.com/tdewolff/parse/v2's releases.

v2.8.5

v2.8.4

v2.8.3

v2.8.2

v2.8.1

v2.8.0

v2.7.23

v2.7.22

v2.7.21

v2.7.20

v2.7.19

v2.7.18

  • Fix last version for building on Windows

v2.7.17

  • Binary reader with mmap support now only for UNIX platforms, fixes #122

... (truncated)

Commits
  • f16edec JS: parse private elements in classes as variables that can be renamed
  • 0efcf90 CSS: fix parsing rule sets, fixes #127
  • 6986d62 CSS: fix parsing custom identifier tokens, such as --0
  • 6d3ca97 HTML: fix bug for adjacent templates in attributes
  • 236908b Fix bug in BinaryReader.ReadBytes
  • 3c14174 Binary: improve EOF from binary readers
  • be7b6b1 Merge branch 'master' of github.com:tdewolff/parse
  • 4ee1f02 Fix binary reader race condition
  • 570159f Merge pull request #126 from mjethani/feature/css-layers
  • 0348dfa Refactor BinaryReader
  • Additional commits viewable in compare view

Updates golang.org/x/net from 0.20.0 to 0.46.0

Commits
  • 2002a06 go.mod: update golang.org/x dependencies
  • 59706cd html: impose open element stack size limit
  • 6ec8895 html: align in row insertion mode with spec
  • 5393563 http2: fix RFC 9218 write scheduler not being idempotent
  • b2ab371 internal/httpsfv: implement parsing support for date and display string
  • edb764c internal/httpsfv: add parsing functionality for types defined in RFC 8941
  • fbba2c2 internal/httpsfv: add support for consuming Display String and Date type
  • 47a241f http2: make the error channel pool per-Server
  • 51f657b webdav/internal/xml: use the built-in min function
  • f2e909b internal/httpsfv: implement parsing support for Dictionary and List type.
  • Additional commits viewable in compare view

Updates golang.org/x/sync from 0.6.0 to 0.17.0

Commits
  • 04914c2 all: upgrade go directive to at least 1.24.0 [generated]
  • 7fad2c9 errgroup: revert propagation of panics
  • 8a14946 errgroup: remove duplicated comment
  • 1869c69 all: replace deprecated ioutil
  • d1ac909 sync/errgroup: PanicError.Error print stack trace
  • 506c70f errgroup: propagate panic and Goexit through Wait
  • 396f3a0 errgroup: document calling Go before Wait
  • b637f27 errgroup: drop support for Go versions before 1.20
  • 960bf1f all: upgrade go directive to at least 1.23.0 [generated]
  • fe3591b sync/errgroup: improve documentation for semaphore limit behavior
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the all group with 5 updates
6b40ef0 
Bumps the all group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/cenkalti/backoff/v4](https://github.com/cenkalti/backoff) | `4.2.1` | `4.3.0` |
| [github.com/spf13/cobra](https://github.com/spf13/cobra) | `1.8.0` | `1.10.1` |
| [github.com/tdewolff/parse/v2](https://github.com/tdewolff/parse) | `2.7.11` | `2.8.5` |
| [golang.org/x/net](https://github.com/golang/net) | `0.20.0` | `0.46.0` |
| [golang.org/x/sync](https://github.com/golang/sync) | `0.6.0` | `0.17.0` |


Updates `github.com/cenkalti/backoff/v4` from 4.2.1 to 4.3.0
- [Changelog](https://github.com/cenkalti/backoff/blob/v5/CHANGELOG.md)
- [Commits](cenkalti/backoff@v4.2.1...v4.3.0)

Updates `github.com/spf13/cobra` from 1.8.0 to 1.10.1
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](spf13/cobra@v1.8.0...v1.10.1)

Updates `github.com/tdewolff/parse/v2` from 2.7.11 to 2.8.5
- [Release notes](https://github.com/tdewolff/parse/releases)
- [Commits](tdewolff/parse@v2.7.11...v2.8.5)

Updates `golang.org/x/net` from 0.20.0 to 0.46.0
- [Commits](golang/net@v0.20.0...v0.46.0)

Updates `golang.org/x/sync` from 0.6.0 to 0.17.0
- [Commits](golang/sync@v0.6.0...v0.17.0)

---
updated-dependencies:
- dependency-name: github.com/cenkalti/backoff/v4
  dependency-version: 4.3.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github.com/spf13/cobra
  dependency-version: 1.10.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: github.com/tdewolff/parse/v2
  dependency-version: 2.8.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golang.org/x/net
  dependency-version: 0.46.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
- dependency-name: golang.org/x/sync
  dependency-version: 0.17.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 1, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant