Skip to content

Bump the gomod-updates group with 4 updates #1101

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
dependabot merged 1 commit into from
Sep 8, 2025
Merged

Bump the gomod-updates group with 4 updates #1101

dependabot merged 1 commit into from
Sep 8, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Sep 8, 2025

Bumps the gomod-updates group with 4 updates: github.com/docker/docker, github.com/golang-migrate/migrate/v4, github.com/redis/go-redis/v9 and github.com/spf13/cobra.

Updates github.com/docker/docker from 28.3.3+incompatible to 28.4.0+incompatible

Release notes

Sourced from github.com/docker/docker's releases.

v28.4.0

28.4.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

New

  • Allow Docker CLI to set the GODEBUG environment variable when the key-value pair ("GODEBUG":"...") exists inside the docker context metadata. docker/cli#6399

Bug fixes and enhancements

  • Add shell completion for docker pull and docker image pull. docker/cli#6420
  • Fix a regression in v28.3.3 that could cause a panic on docker push if the client did not send an X-Registry-Auth header. moby/moby#50738
  • Windows: Potentially fix an issue with "access denied" error when pulling images. moby/moby#50871
  • containerd image store: Fix docker history failing with snapshot X does not exist when calling on a non-native image that was built locally. moby/moby#50875
  • containerd image store: Fix docker image prune to emit correct untag and delete events and list only the deleted images root digests instead of every blob. moby/moby#50837
  • Remove interactive login prompt from docker push and docker pull after a failure caused by missing authentication. docker/cli#6256

Packaging updates

Networking

  • Fix an issue that could cause slow container restart on live-restore. moby/moby#50829

API

Go SDK

Deprecations

  • Deprecate special handling for quoted values for the --tlscacert, --tlscert, and --tlskey command-line flags. docker/cli#6291
  • Mark legacy links env vars (DOCKER_KEEP_DEPRECATED_LEGACY_LINKS_ENV_VARS) as deprecated in v28.4 and set for removal in v30.0. docker/cli#6309
  • Go-SDK: Deprecate field NetworkSettingsBase.Bridge, struct NetworkSettingsBase, all the fields of DefaultNetworkSettings, and struct DefaultNetworkSettings. moby/moby#50839
  • Go-SDK: api/types: build.CacheDiskUsage, container.DiskUsage, images.DiskUsage and volumes.DiskUsage are now deprecated and will be removed in the next major release. moby/moby#50768
  • Go-SDK: cli-plugins/manager: deprecate ReexecEnvvar. docker/cli#6411
  • Go-SDK: cli-plugins/manager: deprecate annotation aliases (CommandAnnotationPlugin, CommandAnnotationPluginVendor, CommandAnnotationPluginVersion, CommandAnnotationPluginInvalid, CommandAnnotationPluginCommandPath) in favor of their equivalent in cli-plugins/manager/metadata. docker/cli#6298

... (truncated)

Commits
  • 249d679 Merge pull request #50890 from vvoland/50889-28.x
  • d664cfe update to go1.24.7
  • b384cd2 Merge pull request #50888 from vvoland/50885-28.x
  • c1ce88e vendor: update buildkit to v0.24.0
  • 4a34e8e Merge pull request #50875 from vvoland/50867-28.x
  • cfa70d0 gha/arm64: Setup qemu
  • d70382e integration/internal: Print Buildkit logs
  • 687b206 c8d/history: Fix non-native platforms
  • e4224f8 integration/internal: Handle Buildkit in GetImageIDFromBody
  • 5d5332b Merge pull request #50871 from vvoland/50870-28.x
  • Additional commits viewable in compare view

Updates github.com/golang-migrate/migrate/v4 from 4.18.2 to 4.19.0

Release notes

Sourced from github.com/golang-migrate/migrate/v4's releases.

v4.19.0

What's Changed

New Contributors

Full Changelog: golang-migrate/migrate@v4.18.3...v4.19.0

v4.18.3

Changelog

  • a4d0a1b Bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2
  • f37ef79 Bump golang.org/x/crypto from 0.31.0 to 0.35.0
  • 5b97c92 Bump golang.org/x/net from 0.33.0 to 0.38.0
  • e6d84f6 Drop support for Go 1.22 and add support for Go 1.24
  • fccd197 Mention CLI install instructions in main README
  • 34c2b4a Remove redundant build tags
  • a868033 Update FAQ.md - typo
  • 7269490 Update golangci-lint version used in GitHub Actions
  • c5137c4 Update migrate -help output for the readme file
  • 033835a Update to dktest v0.4.5
  • 8b09191 fix: typo limited not limitted
  • 60d73be refactor: replace github.com/pkg/errors with stdlib
  • 36d17ba tests: fix various tests (#1209)
Commits
  • 8b9c5f7 Merge pull request #1310 from dhui/update_go
  • b4ec9bc Add support for Go 1.25 and drop support for 1.23
  • ed4bdd4 Ensure bufferWriter is always closed in Migration.Buffer and propagate close ...
  • 8945e85 Merge pull request #1303 from romshark/master
  • 7108d80 Merge pull request #1309 from dhui/dktest_v0.4.6
  • 682016f Merge pull request #1277 from sandhilt/doc/change-apt-key-to-gpg
  • f3e6b5a Replace usage of deprecated docker types
  • 0a17402 Update dktest to v0.4.6 for docker vuln fix
  • 5eee0c8 Merge pull request #1299 from golang-migrate/dependabot/go_modules/golang.org...
  • 642a24d Bump golang.org/x/oauth2 from 0.18.0 to 0.27.0
  • Additional commits viewable in compare view

Updates github.com/redis/go-redis/v9 from 9.12.0 to 9.13.0

Release notes

Sourced from github.com/redis/go-redis/v9's releases.

9.13.0

Highlights

  • Pipeliner expose queued commands (#3496)
  • Ensure that JSON.GET returns Nil response (#3470)
  • Fixes on Read and Write buffer sizes and UniversalOptions

Changes

  • Pipeliner expose queued commands (#3496)
  • fix(test): fix a timing issue in pubsub test (#3498)
  • Allow users to enable read-write splitting in failover mode. (#3482)
  • Set the read/write buffer size of the sentinel client to 4KiB (#3476)

🚀 New Features

  • fix(otel): register wait metrics (#3499)
  • Support subscriptions against cluster slave nodes (#3480)
  • Add wait metrics to otel (#3493)
  • Clean failing timeout implementation (#3472)

🐛 Bug Fixes

  • Do not assume that all non-IP hosts are loopbacks (#3085)
  • Ensure that JSON.GET returns Nil response (#3470)

🧰 Maintenance

  • fix(otel): register wait metrics (#3499)
  • fix(make test): Add default env in makefile (#3491)
  • Update the introduction to running tests in README.md (#3495)
  • test: Add comprehensive edge case tests for IncrByFloat command (#3477)
  • Set the default read/write buffer size of Redis connection to 32KiB (#3483)
  • Bumps test image to 8.2.1-pre (#3478)
  • fix UniversalOptions miss ReadBufferSize and WriteBufferSize options (#3485)
  • chore(deps): bump actions/checkout from 4 to 5 (#3484)
  • Removes dry run for stale issues policy (#3471)
  • Update otel metrics URL (#3474)

Contributors

We'd like to thank all the contributors who worked on this release!

@​LINKIWI, @​cxljs, @​cybersmeashish, @​elena-kolevska, @​htemelski-redis, @​mwhooker, @​ndyakov, @​ofekshenawa, @​suever

9.12.1

🚀 Highlights

In the last version (9.12.0) the client introduced bigger write and read buffer sizes. The default value was 512KiB. However, users reported that this is too big for most use cases and can lead to high memory usage. In this version the default value is changed to 256KiB. The README.md was updated to reflect the correct default value and include a note that the default value can be changed.

🐛 Bug Fixes

... (truncated)

Changelog

Sourced from github.com/redis/go-redis/v9's changelog.

9.13.0 (2025-09-03)

Highlights

  • Pipeliner expose queued commands (#3496)
  • Ensure that JSON.GET returns Nil response (#3470)
  • Fixes on Read and Write buffer sizes and UniversalOptions

Changes

  • Pipeliner expose queued commands (#3496)
  • fix(test): fix a timing issue in pubsub test (#3498)
  • Allow users to enable read-write splitting in failover mode. (#3482)
  • Set the read/write buffer size of the sentinel client to 4KiB (#3476)

🚀 New Features

  • fix(otel): register wait metrics (#3499)
  • Support subscriptions against cluster slave nodes (#3480)
  • Add wait metrics to otel (#3493)
  • Clean failing timeout implementation (#3472)

🐛 Bug Fixes

  • Do not assume that all non-IP hosts are loopbacks (#3085)
  • Ensure that JSON.GET returns Nil response (#3470)

🧰 Maintenance

  • fix(otel): register wait metrics (#3499)
  • fix(make test): Add default env in makefile (#3491)
  • Update the introduction to running tests in README.md (#3495)
  • test: Add comprehensive edge case tests for IncrByFloat command (#3477)
  • Set the default read/write buffer size of Redis connection to 32KiB (#3483)
  • Bumps test image to 8.2.1-pre (#3478)
  • fix UniversalOptions miss ReadBufferSize and WriteBufferSize options (#3485)
  • chore(deps): bump actions/checkout from 4 to 5 (#3484)
  • Removes dry run for stale issues policy (#3471)
  • Update otel metrics URL (#3474)

Contributors

We'd like to thank all the contributors who worked on this release!

@​LINKIWI, @​cxljs, @​cybersmeashish, @​elena-kolevska, @​htemelski-redis, @​mwhooker, @​ndyakov, @​ofekshenawa, @​suever

9.12.1 (2025-08-11)

🚀 Highlights

In the last version (9.12.0) the client introduced bigger write and read buffer sized. The default value we set was 512KiB. However, users reported that this is too big for most use cases and can lead to high memory usage. In this version the default value is changed to 256KiB. The README.md was updated to reflect the correct default value and include a note that the default value can be changed.

... (truncated)

Commits
  • 52bda7a chore(release): 9.13.0 (#3500)
  • 19fdc48 chore(otel): register wait metrics (#3499)
  • 10121e9 feat(osscluster): Support subscriptions against cluster slave nodes (#3480)
  • 6f41b60 fix(client): Do not assume that all non-IP hosts are loopbacks (#3085)
  • f005806 feat(otel): Add wait metrics to otel (#3493)
  • fafec3f Pipeliner expose queued commands (#3496)
  • 6b9cbe8 fix(test): fix a timing issue in pubsub test (#3498)
  • e91f6ce fix(make test): Add default env in makefile (#3491)
  • 6bc7238 Fix the ReplicaOnly option does not take effect when using NewFailoverCluster...
  • bb94ac7 chore(readme): Update the introduction to running tests in README.md (#3495)
  • Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.9.1 to 1.10.1

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.1

🐛 Fix

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

  • If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
  • or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

More details can be found here: spf13/cobra#2303

✨ Features

🐛 Fix

🪠 Testing

📝 Docs

New Contributors

... (truncated)

Commits
  • 7da941c chore: Bump pflag to v1.0.9 (#2305)
  • 51d6751 Bump pflag to 1.0.8 (#2303)
  • 3f3b818 Update README.md with new logo
  • dcaf42e Add Periscope to the list of projects using Cobra (#2299)
  • 6dec1ae The default ShellCompDirective can be customized for a command and its subcom...
  • c8289c1 chore(golangci-lint): add some exclusion presets
  • 4af7b64 refactor: apply golangci-lint autofixes, work around false positives
  • 75790e4 chore(golangci-lint): upgrade to v2
  • db3ddb5 Adding sponsorship to README.md
  • 67171d6 putting sponsorship below header
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the gomod-updates group with 4 updates
4a852ee 
Bumps the gomod-updates group with 4 updates: [github.com/docker/docker](https://github.com/docker/docker), [github.com/golang-migrate/migrate/v4](https://github.com/golang-migrate/migrate), [github.com/redis/go-redis/v9](https://github.com/redis/go-redis) and [github.com/spf13/cobra](https://github.com/spf13/cobra).


Updates `github.com/docker/docker` from 28.3.3+incompatible to 28.4.0+incompatible
- [Release notes](https://github.com/docker/docker/releases)
- [Commits](moby/moby@v28.3.3...v28.4.0)

Updates `github.com/golang-migrate/migrate/v4` from 4.18.2 to 4.19.0
- [Release notes](https://github.com/golang-migrate/migrate/releases)
- [Changelog](https://github.com/golang-migrate/migrate/blob/master/.goreleaser.yml)
- [Commits](golang-migrate/migrate@v4.18.2...v4.19.0)

Updates `github.com/redis/go-redis/v9` from 9.12.0 to 9.13.0
- [Release notes](https://github.com/redis/go-redis/releases)
- [Changelog](https://github.com/redis/go-redis/blob/master/RELEASE-NOTES.md)
- [Commits](redis/go-redis@v9.12.0...v9.13.0)

Updates `github.com/spf13/cobra` from 1.9.1 to 1.10.1
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](spf13/cobra@v1.9.1...v1.10.1)

---
updated-dependencies:
- dependency-name: github.com/docker/docker
  dependency-version: 28.4.0+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-updates
- dependency-name: github.com/golang-migrate/migrate/v4
  dependency-version: 4.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-updates
- dependency-name: github.com/redis/go-redis/v9
  dependency-version: 9.13.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-updates
- dependency-name: github.com/spf13/cobra
  dependency-version: 1.10.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: gomod-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Sep 8, 2025
@dependabot dependabot bot requested a review from a team as a code owner September 8, 2025 05:14
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Sep 8, 2025
@graphite-app
Copy link

graphite-app bot commented Sep 8, 2025

How to use the Graphite Merge Queue

Add either label to this PR to merge it via the merge queue:

  • Queue - adds this PR to the back of the merge queue
  • Hotfix - for urgent hot fixes, skip the queue and merge this PR next

You must have a Graphite account in order to use the merge queue. Sign up using this link.

An organization admin has enabled the Graphite Merge Queue in this repository.

Please do not merge from GitHub as this will restart CI on PRs being processed by the merge queue.

@macroscopeapp
Copy link

macroscopeapp bot commented Sep 8, 2025

Update dependency versions in go.mod and checksums in go.sum to bump the gomod-updates group with 4 updates so builds resolve and link against the new modules

This pull request updates Go module definitions and corresponding checksums.

  • Update versions in go.mod for github.com/docker/docker to v28.4.0+incompatible, github.com/golang-migrate/migrate/v4 to v4.19.0, github.com/redis/go-redis/v9 to v9.13.0, github.com/spf13/cobra to v1.10.1, and indirect github.com/spf13/pflag to v1.0.9.
  • Update dependency checksums in go.sum to match the new versions.

📍Where to Start

Start with the dependency version changes in go.mod, then review the corresponding checksum updates in go.sum.

Macroscope summarized 4a852ee.

mkysel
mkysel approved these changes Sep 8, 2025
View reviewed changes
Copy link
Collaborator

@mkysel mkysel left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@dependabot merge

@dependabot dependabot bot merged commit 65aa3d7 into main Sep 8, 2025
10 of 12 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/gomod-updates-f95910ff31 branch September 8, 2025 14:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mkysel mkysel mkysel approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mkysel