Skip to content

build(deps): Bump the go group across 1 directory with 21 updates#2144

Merged
felixfontein merged 1 commit into
mainfrom
dependabot/go_modules/go-f931dca820
Apr 17, 2026
Merged

build(deps): Bump the go group across 1 directory with 21 updates#2144
felixfontein merged 1 commit into
mainfrom
dependabot/go_modules/go-f931dca820

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 8, 2026
edited
Loading

Bumps the go group with 11 updates in the / directory:

Package From To
cloud.google.com/go/kms 1.26.0 1.27.0
cloud.google.com/go/storage 1.60.0 1.62.0
github.com/ProtonMail/go-crypto 1.3.0 1.4.1
github.com/aws/aws-sdk-go-v2/config 1.32.9 1.32.14
github.com/aws/aws-sdk-go-v2/feature/s3/manager 1.22.2 1.22.13
github.com/aws/aws-sdk-go-v2/service/kms 1.50.0 1.50.4
github.com/fatih/color 1.18.0 1.19.0
github.com/hashicorp/vault/api 1.22.0 1.23.0
github.com/huaweicloud/huaweicloud-sdk-go-v3 0.1.187 0.1.191
github.com/lib/pq 1.11.2 1.12.3
google.golang.org/grpc 1.79.3 1.80.0

Updates cloud.google.com/go/kms from 1.26.0 to 1.27.0

Release notes

Sourced from cloud.google.com/go/kms's releases.

kms: v1.27.0

v1.27.0 (2026-04-02)

retail: v1.27.0

v1.27.0 (2026-04-02)

Changelog

Sourced from cloud.google.com/go/kms's changelog.

1.27.0 (2024-04-15)

Features

  • documentai: Support a new Layout Processor in Document AI (2cdc40a)

1.26.1 (2024-03-14)

Bug Fixes

  • documentai: Update protobuf dep to v1.33.0 (30b038d)

Documentation

  • documentai: A comment for field processor_version_source in message .google.cloud.documentai.v1beta3.ImportProcessorVersionRequest is changed (25c3f2d)
Commits
  • b64e8dc chore: librarian release pull request: 20251013T184035Z (#13116)
  • ddc086c feat(aiplatform): Add JAILBREAK category to SafetySettings for prediction ser...
  • c79db96 chore: librarian generate pull request: 20251013T073656Z (#13101)
  • b041315 chore: migrate 18 modules to Librarian (#13112)
  • a75de40 chore: migrate advisorynotifications to Librarian (#13110)
  • 3cf5269 chore: undo IAM semi-migration (#13109)
  • 7663fdc fix(internal/stategen): be more conservative about removing OwlBot lines (#13...
  • 8ebb896 chore: librarian release pull request: 20251010T200657Z (#13107)
  • befb302 test(internal/postprocessor): skip test that expects certain live config (#13...
  • 1930511 testing(internal/godocfx): convert equality check to a diff check (#13089)
  • Additional commits viewable in compare view

Updates cloud.google.com/go/storage from 1.60.0 to 1.62.0

Release notes

Sourced from cloud.google.com/go/storage's releases.

storage: v1.62.0

v1.62.0 (2026-04-06)

Commits
  • 01df6e1 chore(main): release spanner 1.62.0 (#10073)
  • 8e675cd fix(spanner): Add ARRAY keywords to keywords (#10079)
  • db8216e feat(pubsub/pstest): add support to register other servers into grpc.Server (...
  • 292e812 docs(maps/fleetengine): mark TerminalPointId as deprecated (#10130)
  • 0e6413d feat(bigtable): Add ignore_warnings flag to SetGcPolicy (#9372)
  • 2d34bf3 chore(all): update deps (#10156)
  • 7371665 test(pubsub): make error checking of receive less brittle (#10165)
  • fa3bfdb fix(auth): handle non-Transport DefaultTransport (#10162)
  • 1320d7d chore(main): release vertexai 0.9.0 (#10163)
  • b452014 chore(vertexai): skip tests that check blocked inputs for model (#10152)
  • Additional commits viewable in compare view

Updates github.com/ProtonMail/go-crypto from 1.3.0 to 1.4.1

Release notes

Sourced from github.com/ProtonMail/go-crypto's releases.

Release v1.4.1

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.4.0...v1.4.1

Release v1.4.1-proton

This release is v1.4.1 with support for the following non-standardized features:

Release v1.4.0

What's Changed

Full Changelog: ProtonMail/go-crypto@v1.3.0...v1.4.0

Release v1.4.0-proton

This release is v1.4.0 with support for the following non-standardized features:

Commits
  • 2e73b11 Properly handle ECC keys with invalid points (#304)
  • a8cc4f0 Merge pull request #298 from ProtonMail/feat/cleartext-hash-header
  • 57f891b Merge branch 'main' into feat/cleartext-hash-header
  • da5c190 Merge pull request #299 from ProtonMail/fix/ecdh-low-order-curve-points
  • 3cc59b0 Merge branch 'main' into feat/cleartext-hash-header
  • b11bd23 fix(ecdh): Do not allow low order public key points
  • b6bdd12 Merge pull request #294 from ProtonMail/chore/bump-go-and-circl
  • b1ff3d5 Bump crypto dependencies and min go version to 1.23
  • cfb2af9 fix(cleartext): Check hashes in headers
  • de87788 Add InsecureGenerateNonCriticalSignatureCreationTime option to generate non-c...
  • Additional commits viewable in compare view

Updates github.com/aws/aws-sdk-go-v2/config from 1.32.9 to 1.32.14

Commits

Updates github.com/aws/aws-sdk-go-v2/credentials from 1.19.9 to 1.19.14

Commits

Updates github.com/aws/aws-sdk-go-v2/feature/s3/manager from 1.22.2 to 1.22.13

Commits

Updates github.com/aws/aws-sdk-go-v2/service/kms from 1.50.0 to 1.50.4

Commits

Updates github.com/aws/aws-sdk-go-v2/service/s3 from 1.97.3 to 1.99.0

Commits

Updates github.com/aws/aws-sdk-go-v2/service/sts from 1.41.6 to 1.41.10

Commits

Updates github.com/fatih/color from 1.18.0 to 1.19.0

Release notes

Sourced from github.com/fatih/color's releases.

v1.19.0

What's Changed

New Contributors

Full Changelog: fatih/color@v1.18.0...v1.19.0

Commits
  • ca25f6e Merge pull request #266 from fatih/dependabot/github_actions/actions/setup-go-6
  • 1205984 Bump actions/setup-go from 5 to 6
  • 5715c20 Merge pull request #269 from UnSubble/main
  • 2f6e200 Merge branch 'main' into main
  • f72ec94 Merge pull request #273 from fatih/dependabot/github_actions/actions/checkout-6
  • 848e633 Merge branch 'main' into main
  • 4c2cd34 Add tests
  • 7f812f0 Bump actions/checkout from 4 to 6
  • b7fc9f9 Merge pull request #259 from fatih/dependabot/github_actions/dominikh/staticc...
  • 239a88f Bump dominikh/staticcheck-action from 1.3.1 to 1.4.0
  • Additional commits viewable in compare view

Updates github.com/hashicorp/vault/api from 1.22.0 to 1.23.0

Commits
  • d430306 Merge remote-tracking branch 'remotes/from/ce/main'
  • a3bc0a3 (enos): Add LDAP secrets engine blackbox tests to Plugin Scenario (#13072) (#...
  • f8df539 Merge remote-tracking branch 'remotes/from/ce/main'
  • 2b0ec25 VAULT-43444 Addressed races in tests (#13278) (#13285)
  • a097d1f Merge remote-tracking branch 'remotes/from/ce/main'
  • 7e587fd Update vault-plugin-auth-kubernetes to v0.24.1 (#13259) (#13287)
  • 1331818 UI: Fix namespace search showing empty state when namespaces exist (#13257) (...
  • 7b12feb Merge remote-tracking branch 'remotes/from/ce/main'
  • 7d4395c Update vault-plugin-auth-jwt to v0.26.1 (#13242) (#13283)
  • 6d4b615 adds flag to fix chrome in ci (#13279) (#13282)
  • Additional commits viewable in compare view

Updates github.com/huaweicloud/huaweicloud-sdk-go-v3 from 0.1.187 to 0.1.191

Release notes

Sourced from github.com/huaweicloud/huaweicloud-sdk-go-v3's releases.

v0.1.191

Release 0.1.191

v0.1.190

Release 0.1.190

v0.1.189

Release 0.1.189

v0.1.188

Release 0.1.188

Changelog

Sourced from github.com/huaweicloud/huaweicloud-sdk-go-v3's changelog.

0.1.191 2026-04-02

HuaweiCloud SDK Core

  • Features
    • Obtaining temporary AK/SK and security token using Pod Identity in CCE clusters is supported.
  • Bug Fix
    • None
  • Change
    • None

HuaweiCloud SDK DGC

  • API Version
    • V1
  • Features
    • None
  • Bug Fix
    • None
  • Change
    • ListSystemTasks
      • changes of response param
        • + status: enum value [WARNING]
        • + subtasks.status: enum value [WARNING]

HuaweiCloud SDK DLF

  • API Version
    • V1
  • Features
    • None
  • Bug Fix
    • None
  • Change
    • ListSystemTasks
      • changes of response param
        • + status: enum value [WARNING]
        • + subTasks.status: enum value [WARNING]

HuaweiCloud SDK GaussDBforopenGauss

  • API Version
    • V3
  • Features
    • Support the API ModifySecurityGroup
  • Bug Fix
    • None
  • Change
    • None

... (truncated)

Commits
  • 3db6e75 release 0.1.191 source code
  • 981ca7f release 0.1.190 source code
  • 26011b7 release 0.1.189 source code
  • 1cd70eb Merge pull request #103 from mabcd-9527/master
  • 5872009 Update and rename go-download.yml to verify-download.yml
  • a401a4f Refactor Go download workflow for version handling
  • e4390f5 release 0.1.188 source code
  • d503fc8 Update release trigger types in Go download workflow
  • 65d8277 Update go-download.yml
  • 7dd42ac Update workflow to trigger on release events
  • Additional commits viewable in compare view

Updates github.com/lib/pq from 1.11.2 to 1.12.3

Release notes

Sourced from github.com/lib/pq's releases.

v1.12.3

  • Send datestyle startup parameter, improving compatbility with database engines that use a different default datestyle such as EnterpriseDB (#1312).

#1312: lib/pq#1312

v1.12.2

  • Treat io.ErrUnexpectedEOF as driver.ErrBadConn so database/sql discards the connection. Since v1.12.0 this could result in permanently broken connections, especially with CockroachDB which frequently sends partial messages (#1299).

#1299: lib/pq#1299

v1.12.1

  • Look for pgpass file in ~/.pgpass instead of ~/.postgresql/pgpass (#1300).

  • Don't clear password if directly set on pq.Config (#1302).

#1300: lib/pq#1300 #1302: lib/pq#1302

v1.12.0

  • The next release may change the default sslmode from require to prefer. See #1271 for details.

  • CopyIn() and CopyInToSchema() have been marked as deprecated. These are simple query builders and not needed for COPY [..] FROM STDIN support (which is not deprecated). (#1279)

    // Old
tx.Prepare(CopyIn("temp", "num", "text", "blob", "nothing"))

    // Replacement
tx.Prepare(copy temp (num, text, blob, nothing) from stdin)

Features

  • Support protocol 3.2, and the min_protocol_version and max_protocol_version DSN parameters (#1258).

  • Support sslmode=prefer and sslmode=allow (#1270).

  • Support ssl_min_protocol_version and ssl_max_protocol_version (#1277).

  • Support connection service file to load connection details (#1285).

  • Support sslrootcert=system and use ~/.postgresql/root.crt as the default value of sslrootcert (#1280, #1281).

  • Add a new pqerror package with PostgreSQL error codes (#1275).

    For example, to test if an error is a UNIQUE constraint violation:

    if pqErr, ok := errors.AsType[*pq.Error](https://github.com/lib/pq/blob/HEAD/err); ok && pqErr.Code == pqerror.UniqueViolation {
    log.Fatalf("email %q already exsts", email)
}

    To make this a bit more convenient, it also adds a pq.As() function:

... (truncated)

Changelog

Sourced from github.com/lib/pq's changelog.

v1.12.3 (2026-04-03)

  • Send datestyle startup parameter, improving compatbility with database engines that use a different default datestyle such as EnterpriseDB (#1312).

#1312: lib/pq#1312

v1.12.2 (2026-04-02)

  • Treat io.ErrUnexpectedEOF as driver.ErrBadConn so database/sql discards the connection. Since v1.12.0 this could result in permanently broken connections, especially with CockroachDB which frequently sends partial messages (#1299).

#1299: lib/pq#1299

v1.12.1 (2026-03-30)

  • Look for pgpass file in ~/.pgpass instead of ~/.postgresql/pgpass (#1300).

  • Don't clear password if directly set on pq.Config (#1302).

#1300: lib/pq#1300 #1302: lib/pq#1302

v1.12.0 (2026-03-18)

  • The next release may change the default sslmode from require to prefer. See #1271 for details.

  • CopyIn() and CopyInToSchema() have been marked as deprecated. These are simple query builders and not needed for COPY [..] FROM STDIN support (which is not deprecated). (#1279)

    // Old
tx.Prepare(CopyIn("temp", "num", "text", "blob", "nothing"))

    // Replacement
tx.Prepare(copy temp (num, text, blob, nothing) from stdin)

Features

  • Support protocol 3.2, and the min_protocol_version and max_protocol_version DSN parameters (#1258).

  • Support sslmode=prefer and sslmode=allow (#1270).

  • Support ssl_min_protocol_version and ssl_max_protocol_version (#1277).

... (truncated)

Commits
  • 1f3e3d9 Send datestyle as a startup parameter (#1312)
  • 32ba56b Expand tests for multiple result sets
  • c2cfac1 Release v1.12.2
  • 859f104 Test CockroachDB
  • 12e464c Allow multiple matches and regexps in pqtest.ErrorContains()
  • 6d77ced Treat io.ErrUnexpectedEOF as driver.ErrBadConn in handleError
  • 71daecb Ensure transactions are closed in pqtest
  • 8f44823 Set PGAPPNAME for tests
  • 4af2196 Fix healthcheck
  • 38a54e4 Split out testdata/init a bit
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.48.0 to 0.49.0

Commits
  • 982eaa6 go.mod: update golang.org/x dependencies
  • 159944f ssh,acme: clean up tautological/impossible nil conditions
  • a408498 acme: only require prompt if server has terms of service
  • cab0f71 all: upgrade go directive to at least 1.25.0 [generated]
  • 2f26647 x509roots/fallback: update bundle
  • See full diff in compare view

Updates golang.org/x/net from 0.50.0 to 0.52.0

Commits
  • 316e20c go.mod: update golang.org/x dependencies
  • 9767a42 internal/http3: add support for plugging into net/http
  • 4a81284 http2: update docs to disrecommend this package
  • dec6603 dns/dnsmessage: reject too large of names early during unpack
  • 8afa12f http2: deprecate write schedulers
  • 38019a2 http2: add missing copyright header to export_test.go
  • 039b87f internal/http3: return error when Write is used after status 304 is set
  • 6267c6c internal/http3: add HTTP 103 Early Hints support to ClientConn
  • 591bdf3 internal/http3: add HTTP 103 Early Hints support to Server
  • 1faa6d8 internal/http3: avoid potential race when aborting RoundTrip
  • Additional commits viewable in compare view

Updates golang.org/x/oauth2 from 0.35.0 to 0.36.0

Commits
  • 4d954e6 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/sys from 0.41.0 to 0.42.0

Commits
  • eaaaaee windows/registry: correct KeyInfo.ModTime calculation
  • 942780b cpu: darwin/arm64 feature detection
  • acef388 unix/linux: Prefixmsg and PrefixCacheinfo structs
  • 3687fbd cpu: better defaults on darwin ARM64
  • 48062e9 plan9: change Note to alias syscall.Note
  • 4f23f80 windows: change Signal to alias syscall.Signal
  • 7548802 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/term from 0.40.0 to 0.41.0

Commits
  • 9d2dc07 go.mod: update golang.org/x dependencies
  • d954e03 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates google.golang.org/api from 0.267.0 to 0.273.1

Release notes

Sourced from google.golang.org/api's releases.

v0.273.1

0.273.1 (2026-03-31)

Bug Fixes

  • Merge duplicate x-goog-request-params header (#3547) (2008108)

v0.273.0

0.273.0 (2026-03-23)

Features

v0.272.0

0.272.0 (2026-03-16)

Features

v0.271.0

0.271.0 (2026-03-10)

Features

v0.270.0

0.270.0 (2026-03-08)

Features

... (truncated)

Changelog

Sourced from google.golang.org/api's changelog.

0.273.1 (2026-03-31)

Bug Fixes

  • Merge duplicate x-goog-request-params header (#3547) (2008108)

0.273.0 (2026-03-23)

Features

0.272.0 (2026-03-16)

Features

0.271.0 (2026-03-10)

Features

0.270.0 (2026-03-08)

Features

@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Apr 8, 2026
felixfontein
felixfontein requested changes Apr 8, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@felixfontein felixfontein left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

#2134 (review)

@dependabot dependabot Bot force-pushed the dependabot/go_modules/go-f931dca820 branch from 404452d to c9b7653 Compare April 13, 2026 09:23
@felixfontein
Copy link
Copy Markdown
Contributor

felixfontein commented Apr 16, 2026

@dependabot rebase

@dependabot dependabot Bot force-pushed the dependabot/go_modules/go-f931dca820 branch from c9b7653 to 17eb7db Compare April 16, 2026 20:24
@dependabot
build(deps): Bump the go group across 1 directory with 21 updates
309ee29 
Bumps the go group with 11 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [cloud.google.com/go/kms](https://github.com/googleapis/google-cloud-go) | `1.26.0` | `1.27.0` |
| [cloud.google.com/go/storage](https://github.com/googleapis/google-cloud-go) | `1.60.0` | `1.62.0` |
| [github.com/ProtonMail/go-crypto](https://github.com/ProtonMail/go-crypto) | `1.3.0` | `1.4.1` |
| [github.com/aws/aws-sdk-go-v2/config](https://github.com/aws/aws-sdk-go-v2) | `1.32.9` | `1.32.14` |
| [github.com/aws/aws-sdk-go-v2/feature/s3/manager](https://github.com/aws/aws-sdk-go-v2) | `1.22.2` | `1.22.13` |
| [github.com/aws/aws-sdk-go-v2/service/kms](https://github.com/aws/aws-sdk-go-v2) | `1.50.0` | `1.50.4` |
| [github.com/fatih/color](https://github.com/fatih/color) | `1.18.0` | `1.19.0` |
| [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault) | `1.22.0` | `1.23.0` |
| [github.com/huaweicloud/huaweicloud-sdk-go-v3](https://github.com/huaweicloud/huaweicloud-sdk-go-v3) | `0.1.187` | `0.1.191` |
| [github.com/lib/pq](https://github.com/lib/pq) | `1.11.2` | `1.12.3` |
| [google.golang.org/grpc](https://github.com/grpc/grpc-go) | `1.79.3` | `1.80.0` |



Updates `cloud.google.com/go/kms` from 1.26.0 to 1.27.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/documentai/CHANGES.md)
- [Commits](googleapis/google-cloud-go@kms/v1.26.0...dlp/v1.27.0)

Updates `cloud.google.com/go/storage` from 1.60.0 to 1.62.0
- [Release notes](https://github.com/googleapis/google-cloud-go/releases)
- [Changelog](https://github.com/googleapis/google-cloud-go/blob/main/CHANGES.md)
- [Commits](googleapis/google-cloud-go@spanner/v1.60.0...spanner/v1.62.0)

Updates `github.com/ProtonMail/go-crypto` from 1.3.0 to 1.4.1
- [Release notes](https://github.com/ProtonMail/go-crypto/releases)
- [Commits](ProtonMail/go-crypto@v1.3.0...v1.4.1)

Updates `github.com/aws/aws-sdk-go-v2/config` from 1.32.9 to 1.32.14
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@config/v1.32.9...config/v1.32.14)

Updates `github.com/aws/aws-sdk-go-v2/credentials` from 1.19.9 to 1.19.14
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/m2/v1.19.9...credentials/v1.19.14)

Updates `github.com/aws/aws-sdk-go-v2/feature/s3/manager` from 1.22.2 to 1.22.13
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@v1.22.2...service/signer/v1.22.13)

Updates `github.com/aws/aws-sdk-go-v2/service/kms` from 1.50.0 to 1.50.4
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.50.0...service/ssm/v1.50.4)

Updates `github.com/aws/aws-sdk-go-v2/service/s3` from 1.97.3 to 1.99.0
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/s3/v1.97.3...service/s3/v1.99.0)

Updates `github.com/aws/aws-sdk-go-v2/service/sts` from 1.41.6 to 1.41.10
- [Release notes](https://github.com/aws/aws-sdk-go-v2/releases)
- [Commits](aws/aws-sdk-go-v2@service/sts/v1.41.6...service/ecs/v1.41.10)

Updates `github.com/fatih/color` from 1.18.0 to 1.19.0
- [Release notes](https://github.com/fatih/color/releases)
- [Commits](fatih/color@v1.18.0...v1.19.0)

Updates `github.com/hashicorp/vault/api` from 1.22.0 to 1.23.0
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v1.10-v1.15.md)
- [Commits](hashicorp/vault@api/v1.22.0...api/v1.23.0)

Updates `github.com/huaweicloud/huaweicloud-sdk-go-v3` from 0.1.187 to 0.1.191
- [Release notes](https://github.com/huaweicloud/huaweicloud-sdk-go-v3/releases)
- [Changelog](https://github.com/huaweicloud/huaweicloud-sdk-go-v3/blob/master/CHANGELOG.md)
- [Commits](huaweicloud/huaweicloud-sdk-go-v3@v0.1.187...v0.1.191)

Updates `github.com/lib/pq` from 1.11.2 to 1.12.3
- [Release notes](https://github.com/lib/pq/releases)
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md)
- [Commits](lib/pq@v1.11.2...v1.12.3)

Updates `golang.org/x/crypto` from 0.48.0 to 0.49.0
- [Commits](golang/crypto@v0.48.0...v0.49.0)

Updates `golang.org/x/net` from 0.50.0 to 0.52.0
- [Commits](golang/net@v0.50.0...v0.52.0)

Updates `golang.org/x/oauth2` from 0.35.0 to 0.36.0
- [Commits](golang/oauth2@v0.35.0...v0.36.0)

Updates `golang.org/x/sys` from 0.41.0 to 0.42.0
- [Commits](golang/sys@v0.41.0...v0.42.0)

Updates `golang.org/x/term` from 0.40.0 to 0.41.0
- [Commits](golang/term@v0.40.0...v0.41.0)

Updates `google.golang.org/api` from 0.267.0 to 0.273.1
- [Release notes](https://github.com/googleapis/google-api-go-client/releases)
- [Changelog](https://github.com/googleapis/google-api-go-client/blob/main/CHANGES.md)
- [Commits](googleapis/google-api-go-client@v0.267.0...v0.273.1)

Updates `google.golang.org/genproto/googleapis/rpc` from 0.0.0-20260203192932-546029d2fa20 to 0.0.0-20260401001100-f93e5f3e9f0f
- [Commits](https://github.com/googleapis/go-genproto/commits)

Updates `google.golang.org/grpc` from 1.79.3 to 1.80.0
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.79.3...v1.80.0)

---
updated-dependencies:
- dependency-name: cloud.google.com/go/kms
  dependency-version: 1.27.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: cloud.google.com/go/storage
  dependency-version: 1.62.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/ProtonMail/go-crypto
  dependency-version: 1.4.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/config
  dependency-version: 1.32.14
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/credentials
  dependency-version: 1.19.14
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/feature/s3/manager
  dependency-version: 1.22.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/kms
  dependency-version: 1.50.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/s3
  dependency-version: 1.99.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/aws/aws-sdk-go-v2/service/sts
  dependency-version: 1.41.10
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/fatih/color
  dependency-version: 1.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/hashicorp/vault/api
  dependency-version: 1.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: github.com/huaweicloud/huaweicloud-sdk-go-v3
  dependency-version: 0.1.191
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: github.com/lib/pq
  dependency-version: 1.12.3
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/crypto
  dependency-version: 0.49.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/net
  dependency-version: 0.52.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/sys
  dependency-version: 0.42.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: golang.org/x/term
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/api
  dependency-version: 0.273.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
- dependency-name: google.golang.org/genproto/googleapis/rpc
  dependency-version: 0.0.0-20260401001100-f93e5f3e9f0f
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go
- dependency-name: google.golang.org/grpc
  dependency-version: 1.80.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/go-f931dca820 branch from 17eb7db to 309ee29 Compare April 16, 2026 20:33
@felixfontein felixfontein merged commit a5a8706 into main Apr 17, 2026
15 checks passed
@felixfontein felixfontein deleted the dependabot/go_modules/go-f931dca820 branch April 17, 2026 05:01
tmeijn pushed a commit to tmeijn/dotfiles that referenced this pull request May 11, 2026
build(deps): update getsops/sops to v3.13.0
132a349 
This MR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [getsops/sops](https://github.com/getsops/sops) | minor | `v3.12.2` → `v3.13.0` |

MR created with the help of [el-capitano/tools/renovate-bot](https://gitlab.com/el-capitano/tools/renovate-bot).

**Proposed changes to behavior should be submitted there as MRs.**

---

### Release Notes

<details>
<summary>getsops/sops (getsops/sops)</summary>

### [`v3.13.0`](https://github.com/getsops/sops/releases/tag/v3.13.0)

[Compare Source](getsops/sops@v3.12.2...v3.13.0)

#### Installation

To install `sops`, download one of the pre-built binaries provided for your platform from the artifacts attached to this release.

For instance, if you are using Linux on an AMD64 architecture:

```shell

# Download the binary
curl -LO https://github.com/getsops/sops/releases/download/v3.13.0/sops-v3.13.0.linux.amd64

# Move the binary in to your PATH
mv sops-v3.13.0.linux.amd64 /usr/local/bin/sops

# Make the binary executable
chmod +x /usr/local/bin/sops
```

##### Verify checksums file signature

The checksums file provided within the artifacts attached to this release is signed using [Cosign](https://docs.sigstore.dev/cosign/overview/) with GitHub OIDC. To validate the signature of this file, run the following commands:

```shell

# Download the checksums file, certificate and signature
curl -LO https://github.com/getsops/sops/releases/download/v3.13.0/sops-v3.13.0.checksums.txt
curl -LO https://github.com/getsops/sops/releases/download/v3.13.0/sops-v3.13.0.checksums.sigstore.json

# Verify the checksums file
cosign verify-blob sops-v3.13.0.checksums.txt \
  --bundle sops-v3.13.0.checksums.sigstore.json \
  --certificate-identity-regexp=https://github.com/getsops \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com
```

##### Verify binary integrity

To verify the integrity of the downloaded binary, you can utilize the checksums file after having validated its signature:

```shell

# Verify the binary using the checksums file
sha256sum -c sops-v3.13.0.checksums.txt --ignore-missing
```

##### Verify artifact provenance

The [SLSA provenance](https://slsa.dev/provenance/v0.2) of the binaries, packages, and SBOMs can be found within the artifacts associated with this release. It is presented through an [in-toto](https://in-toto.io/) link metadata file named `sops-v3.13.0.intoto.jsonl`. To verify the provenance of an artifact, you can utilize the [`slsa-verifier`](https://github.com/slsa-framework/slsa-verifier#artifacts) tool:

```shell

# Download the metadata file
curl -LO  https://github.com/getsops/sops/releases/download/v3.13.0/sops-v3.13.0.intoto.jsonl

# Verify the provenance of the artifact
slsa-verifier verify-artifact <artifact> \
  --provenance-path sops-v3.13.0.intoto.jsonl \
  --source-uri github.com/getsops/sops \
  --source-tag v3.13.0
```

#### Container Images

The `sops` binaries are also available as container images, based on Debian (slim) and Alpine Linux. The Debian-based container images include any dependencies which may be required to make use of certain key services, such as GnuPG, AWS KMS, Azure Key Vault, and Google Cloud KMS. The Alpine-based container images are smaller in size, but do not include these dependencies.

These container images are available for the following architectures: `linux/amd64` and `linux/arm64`.

##### GitHub Container Registry

- `ghcr.io/getsops/sops:v3.13.0`
- `ghcr.io/getsops/sops:v3.13.0-alpine`

##### Quay.io

- `quay.io/getsops/sops:v3.13.0`
- `quay.io/getsops/sops:v3.13.0-alpine`

##### Verify container image signature

The container images are signed using [Cosign](https://docs.sigstore.dev/cosign/overview/) with GitHub OIDC. To validate the signature of an image, run the following command:

```shell
cosign verify ghcr.io/getsops/sops:v3.13.0 \
  --certificate-identity-regexp=https://github.com/getsops \
  --certificate-oidc-issuer=https://token.actions.githubusercontent.com \
  -o text
```

##### Verify container image provenance

The container images include [SLSA provenance](https://slsa.dev/provenance/v0.2) attestations. For more information around the verification of this, please refer to the [`slsa-verifier` documentation](https://github.com/slsa-framework/slsa-verifier#containers).

#### Software Bill of Materials

The Software Bill of Materials (SBOM) for each binary is accessible within the artifacts enclosed with this release. It is presented as an [SPDX](https://spdx.dev/) JSON file, formatted as `<binary>.spdx.sbom.json`.

#### What's Changed

- build(deps): Bump google.golang.org/grpc from 1.79.1 to 1.79.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2110](getsops/sops#2110)
- build(deps): Bump the ci group with 3 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2117](getsops/sops#2117)
- build(deps): Bump the ci group with 3 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2126](getsops/sops#2126)
- build(deps): Bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2133](getsops/sops#2133)
- build(deps): Bump docker/login-action from 4.0.0 to 4.1.0 in the ci group by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2139](getsops/sops#2139)
- Improve error message for top-level arrays by [@&#8203;kushal9897](https://github.com/kushal9897) in [#&#8203;2138](getsops/sops#2138)
- build(deps): Bump github.com/aws/aws-sdk-go-v2/service/s3 from 1.96.0 to 1.97.3 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2142](getsops/sops#2142)
- docs: add get key permission requirement for Azure Key Vault when version is omitted by [@&#8203;Hanashiko](https://github.com/Hanashiko) in [#&#8203;2122](getsops/sops#2122)
- build(deps): Bump actions/upload-artifact from 7.0.0 to 7.0.1 in the ci group by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2149](getsops/sops#2149)
- Use prefixed and truncated key hash instead of location as GPG agent cache key by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2145](getsops/sops#2145)
- Drop support for Go 1.24 by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2141](getsops/sops#2141)
- build(deps): Bump go.opentelemetry.io/otel/sdk from 1.40.0 to 1.43.0 by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2146](getsops/sops#2146)
- build(deps): Bump the go group across 1 directory with 21 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2144](getsops/sops#2144)
- Add SOPS\_GCP\_KMS\_ENDPOINT and SOPS\_GCP\_KMS\_UNIVERSE\_DOMAIN env vars by [@&#8203;DnR-iData](https://github.com/DnR-iData) in [#&#8203;2114](getsops/sops#2114)
- Preserve YAML inline comments through encrypt/edit roundtrip by [@&#8203;knowald](https://github.com/knowald) in [#&#8203;2131](getsops/sops#2131)
- Update release for cosign v3 by [@&#8203;sabre1041](https://github.com/sabre1041) in [#&#8203;2082](getsops/sops#2082)
- build(deps): Bump the ci group with 3 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2151](getsops/sops#2151)
- build(deps): Bump the go group with 12 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2152](getsops/sops#2152)
- Update broken link in README by [@&#8203;manute](https://github.com/manute) in [#&#8203;2153](getsops/sops#2153)
- sops exec-file: make sure to set GID to correct value instead of UID by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2154](getsops/sops#2154)
- sops exec-file: improve error handling, reject non-local paths in `--filename` by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2155](getsops/sops#2155)
- Obtain `--indent` global flag value and pass it to store configs by [@&#8203;skirino](https://github.com/skirino) in [#&#8203;2156](getsops/sops#2156)
- build(deps): Bump the go group with 3 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2159](getsops/sops#2159)
- build(deps): Bump goreleaser/goreleaser-action from 7.1.0 to 7.2.1 in the ci group by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2158](getsops/sops#2158)
- Update all Go dependencies with 'go get -t -u ./...' by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2165](getsops/sops#2165)
- Allow to have space-separated keys in SOPS\_AGE\_KEY by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2086](getsops/sops#2086)
- HC Vault: add allowlist support for acceptable HC Vault URLs by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2164](getsops/sops#2164)
- build(deps): Bump the go group with 5 updates by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2171](getsops/sops#2171)
- build(deps): Bump github/codeql-action from 4.35.2 to 4.35.3 in the ci group by [@&#8203;dependabot](https://github.com/dependabot)\[bot] in [#&#8203;2173](getsops/sops#2173)
- Use mapstructure to (de-)serialize internal metadata; move metadata processing from specific stores to general place by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2120](getsops/sops#2120)
- Release 3.13.0 by [@&#8203;felixfontein](https://github.com/felixfontein) in [#&#8203;2176](getsops/sops#2176)

#### New Contributors

- [@&#8203;kushal9897](https://github.com/kushal9897) made their first contribution in [#&#8203;2138](getsops/sops#2138)
- [@&#8203;Hanashiko](https://github.com/Hanashiko) made their first contribution in [#&#8203;2122](getsops/sops#2122)
- [@&#8203;DnR-iData](https://github.com/DnR-iData) made their first contribution in [#&#8203;2114](getsops/sops#2114)
- [@&#8203;knowald](https://github.com/knowald) made their first contribution in [#&#8203;2131](getsops/sops#2131)
- [@&#8203;manute](https://github.com/manute) made their first contribution in [#&#8203;2153](getsops/sops#2153)
- [@&#8203;skirino](https://github.com/skirino) made their first contribution in [#&#8203;2156](getsops/sops#2156)

**Full Changelog**: <getsops/sops@v3.12.2...v3.13.0>

</details>

---

### Configuration

📅 **Schedule**: (UTC)

- Branch creation
  - At any time (no schedule defined)
- Automerge
  - At any time (no schedule defined)

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever MR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this MR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this MR, check this box

---

This MR has been generated by [Mend Renovate](https://github.com/renovatebot/renovate).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0My4xNjkuNCIsInVwZGF0ZWRJblZlciI6IjQzLjE2OS40IiwidGFyZ2V0QnJhbmNoIjoibWFpbiIsImxhYmVscyI6WyJSZW5vdmF0ZSBCb3QiLCJhdXRvbWF0aW9uOmJvdC1hdXRob3JlZCIsImRlcGVuZGVuY3ktdHlwZTo6bWlub3IiXX0=-->
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@felixfontein felixfontein felixfontein approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@felixfontein