Skip to content

Bump the all-updates group with 6 updates#1042

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/all-updates-bfe5b0c976
Closed

Bump the all-updates group with 6 updates#1042
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/all-updates-bfe5b0c976

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 30, 2026

Copy link
Copy Markdown
Contributor

Bumps the all-updates group with 6 updates:

Package From To
github.com/docker/cli 29.3.0+incompatible 29.3.1+incompatible
github.com/getsentry/sentry-go 0.43.0 0.44.1
github.com/go-git/go-git/v5 5.17.0 5.17.1
github.com/moby/buildkit 0.28.0 0.28.1
github.com/guptarohit/asciigraph 0.8.1 0.9.0
github.com/hashicorp/vault/api 1.22.0 1.23.0

Updates github.com/docker/cli from 29.3.0+incompatible to 29.3.1+incompatible

Commits
  • c2be9cc Merge pull request #6887 from thaJeztah/29.x_backport_pin_actions
  • 0da6a51 ci: pin actions to digests
  • 6b3ca8f Merge pull request #6884 from thaJeztah/29.x_backport_missing_buildtags
  • f47603c Merge pull request #6885 from thaJeztah/29.x_backport_update_actions
  • 9709c8f build(deps): bump docker/metadata-action from 5 to 6
  • af45a23 build(deps): bump docker/bake-action from 6 to 7
  • bc97f5a Merge pull request #6883 from thaJeztah/29.x_backport_update_go1.25.8
  • 6d71967 cli/command: add missing "go:build" comments
  • 9b51892 update to go1.25.8
  • See full diff in compare view

Updates github.com/getsentry/sentry-go from 0.43.0 to 0.44.1

Release notes

Sourced from github.com/getsentry/sentry-go's releases.

0.44.1

[!NOTE]
v0.44.0 had to be released as v0.44.1 due to a technical issue.

New Features ✨

  • Add RemoveAttribute api on the scope. by @​giortzisg in #1224
  • Deprecate Scope.SetExtra, Scope.SetExtras, and Scope.RemoveExtra in favor of Scope.SetAttributes and Scope.RemoveAttribute by @​giortzisg in #1224
    • The recommended migration path is to use SetAttributes to attach values to logs and metrics. Note that attributes do not appear on error events; if you only capture errors, use SetTag or SetContext instead.
    • Before:
    scope.SetExtra("key.string", "str")
    scope.SetExtra("key.int", 42)
    • After (for error events) — use tags and contexts:
    scope.SetTag("key.string", "str")
    scope.SetContext("my_data", sentry.Context{"key.int": 42})
    • After (for logs and metrics) — use attributes:
    scope.SetAttributes(
        attribute.String("key.string", "str"),
        attribute.Int("key.int", 42),
    )
  • Add support for homogenous arrays by @​giortzisg in #1203
  • Add support for client reports by @​giortzisg in #1192
  • Add org id propagation in sentry_baggage by @​giortzisg in #1210
  • Add OrgID and StrictTraceContinuation client options. by @​giortzisg in #1210
  • Add the option to set attributes on the scope by @​giortzisg in #1208

Bug Fixes 🐛

Internal Changes 🔧

Ai

Deps

  • Bump github.com/buger/jsonparser from 1.1.1 to 1.1.2 in /zerolog by @​dependabot in #1231
  • Bump github.com/gofiber/fiber/v2 from 2.52.11 to 2.52.12 in /fiber by @​dependabot in #1209

Other

... (truncated)

Changelog

Sourced from github.com/getsentry/sentry-go's changelog.

0.44.1

[!NOTE]
The v0.44.0 is missing due to a technical issue and had to be released again as v0.44.1

New Features ✨

  • Add RemoveAttribute api on the scope. by @​giortzisg in #1224
  • Deprecate Scope.SetExtra, Scope.SetExtras, and Scope.RemoveExtra in favor of Scope.SetAttributes and Scope.RemoveAttribute by @​giortzisg in #1224
    • The recommended migration path is to use SetAttributes to attach values to logs and metrics. Note that attributes do not appear on error events; if you only capture errors, use SetTag or SetContext instead.
    • Before:
    scope.SetExtra("key.string", "str")
    scope.SetExtra("key.int", 42)
    • After (for error events) — use tags and contexts:
    scope.SetTag("key.string", "str")
    scope.SetContext("my_data", sentry.Context{"key.int": 42})
    • After (for logs and metrics) — use attributes:
    scope.SetAttributes(
        attribute.String("key.string", "str"),
        attribute.Int("key.int", 42),
    )
  • Add support for homogenous arrays by @​giortzisg in #1203
  • Add support for client reports by @​giortzisg in #1192
  • Add org id propagation in sentry_baggage by @​giortzisg in #1210
  • Add OrgID and StrictTraceContinuation client options. by @​giortzisg in #1210
  • Add the option to set attributes on the scope by @​giortzisg in #1208

Bug Fixes 🐛

Internal Changes 🔧

Ai

Deps

  • Bump github.com/buger/jsonparser from 1.1.1 to 1.1.2 in /zerolog by @​dependabot in #1231
  • Bump github.com/gofiber/fiber/v2 from 2.52.11 to 2.52.12 in /fiber by @​dependabot in #1209

... (truncated)

Commits

Updates github.com/go-git/go-git/v5 from 5.17.0 to 5.17.1

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.17.1

What's Changed

Full Changelog: go-git/go-git@v5.17.0...v5.17.1

Commits
  • 5e23dfd Merge pull request #1937 from pjbgf/idx-v5
  • 6b38a32 Merge pull request #1935 from pjbgf/index-v5
  • cd757fc plumbing: format/idxfile, Fix version and fanout checks
  • 3ec0d70 plumbing: format/index, Fix tree extension invalidated entry parsing
  • dbe10b6 plumbing: format/index, Align V2/V3 long name and V4 prefix encoding with Git
  • e9b65df plumbing: format/index, Improve v4 entry name validation
  • adad18d Merge pull request #1930 from go-git/renovate/releases/v5.x-go-github.qkg1.top-clo...
  • 29470bd build: Update module github.com/cloudflare/circl to v1.6.3 [SECURITY]
  • See full diff in compare view

Updates github.com/moby/buildkit from 0.28.0 to 0.28.1

Release notes

Sourced from github.com/moby/buildkit's releases.

v0.28.1

Welcome to the v0.28.1 release of buildkit!

Please try out the release binaries and report any issues at https://github.com/moby/buildkit/issues.

Contributors

  • Tõnis Tiigi
  • CrazyMax
  • Sebastiaan van Stijn

Notable Changes

  • Fix insufficient validation of Git URL #ref:subdir fragments that could allow access to restricted files outside the checked-out repository root. GHSA-4vrq-3vrq-g6gg
  • Fix a vulnerability where an untrusted custom frontend could cause files to be written outside the BuildKit state directory. GHSA-4c29-8rgm-jvjj
  • Fix a panic when processing invalid .dockerignore patterns during COPY. #6610 moby/patternmatcher#9

Dependency Changes

  • github.com/moby/patternmatcher v0.6.0 -> v0.6.1

Previous release can be found at v0.28.0

Commits
  • 45b038c git: normalize and validate subdir paths
  • f5462c2 git: harden ref arg handling
  • 71577a5 source: extract SafeFileName into shared pathutil package
  • df43783 source/http: use os.Root for saved file operations
  • 9ce6f62 source/http: sanitize downloaded filenames
  • 099cf80 executor: validate container IDs centrally
  • 2642113 Merge pull request #6610 from thaJeztah/0.28_backport_bump_patternmatcher
  • 802da78 vendor: github.com/moby/patternmatcher v0.6.1
  • See full diff in compare view

Updates github.com/guptarohit/asciigraph from 0.8.1 to 0.9.0

Release notes

Sourced from github.com/guptarohit/asciigraph's releases.

v0.9.0

Added

  • plot: add X-axis rendering with tick marks and labels (#78)
  • cli: add -xmin, -xmax, and -xt flags for X-axis support (#78) demo

Fixed

  • docker: add OCI labels to Dockerfile for ghcr.io metadata (#76) (02f3e4a)
Changelog

Sourced from github.com/guptarohit/asciigraph's changelog.

0.9.0 (2026-03-28)

Added

  • plot: add X-axis rendering with tick marks and labels (#78)
  • cli: add -xmin, -xmax, and -xt flags for X-axis support (#78)

Fixed

  • docker: add OCI labels to Dockerfile for ghcr.io metadata (#76) (02f3e4a)
Commits
  • 2032fdb chore: release 0.9.0 (#80)
  • 34062f9 fix release
  • 9de946f chore: release 0.9.0
  • 266af73 fix 0.9.0 release
  • eefa2b7 ci(release): skip labeling to fix GraphQL node resolution failure
  • 37e6fba chore: release 0.9.0 (#77)
  • 8c1d226 docs(changelog): consolidate 0.9.0 entries and add PR links
  • d35ab6d chore: release 0.9.0
  • 1411f49 feat: added X-axis support with tick marks & labels (#78)
  • 6e65c25 refactor(options): add X-axis box-drawing characters to default CharSet
  • Additional commits viewable in compare view

Updates github.com/hashicorp/vault/api from 1.22.0 to 1.23.0

Commits
  • d430306 Merge remote-tracking branch 'remotes/from/ce/main'
  • a3bc0a3 (enos): Add LDAP secrets engine blackbox tests to Plugin Scenario (#13072) (#...
  • f8df539 Merge remote-tracking branch 'remotes/from/ce/main'
  • 2b0ec25 VAULT-43444 Addressed races in tests (#13278) (#13285)
  • a097d1f Merge remote-tracking branch 'remotes/from/ce/main'
  • 7e587fd Update vault-plugin-auth-kubernetes to v0.24.1 (#13259) (#13287)
  • 1331818 UI: Fix namespace search showing empty state when namespaces exist (#13257) (...
  • 7b12feb Merge remote-tracking branch 'remotes/from/ce/main'
  • 7d4395c Update vault-plugin-auth-jwt to v0.26.1 (#13242) (#13283)
  • 6d4b615 adds flag to fix chrome in ci (#13279) (#13282)
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all-updates group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [github.com/docker/cli](https://github.com/docker/cli) | `29.3.0+incompatible` | `29.3.1+incompatible` |
| [github.com/getsentry/sentry-go](https://github.com/getsentry/sentry-go) | `0.43.0` | `0.44.1` |
| [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) | `5.17.0` | `5.17.1` |
| [github.com/moby/buildkit](https://github.com/moby/buildkit) | `0.28.0` | `0.28.1` |
| [github.com/guptarohit/asciigraph](https://github.com/guptarohit/asciigraph) | `0.8.1` | `0.9.0` |
| [github.com/hashicorp/vault/api](https://github.com/hashicorp/vault) | `1.22.0` | `1.23.0` |


Updates `github.com/docker/cli` from 29.3.0+incompatible to 29.3.1+incompatible
- [Commits](docker/cli@v29.3.0...v29.3.1)

Updates `github.com/getsentry/sentry-go` from 0.43.0 to 0.44.1
- [Release notes](https://github.com/getsentry/sentry-go/releases)
- [Changelog](https://github.com/getsentry/sentry-go/blob/master/CHANGELOG.md)
- [Commits](getsentry/sentry-go@v0.43.0...v0.44.1)

Updates `github.com/go-git/go-git/v5` from 5.17.0 to 5.17.1
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](go-git/go-git@v5.17.0...v5.17.1)

Updates `github.com/moby/buildkit` from 0.28.0 to 0.28.1
- [Release notes](https://github.com/moby/buildkit/releases)
- [Commits](moby/buildkit@v0.28.0...v0.28.1)

Updates `github.com/guptarohit/asciigraph` from 0.8.1 to 0.9.0
- [Release notes](https://github.com/guptarohit/asciigraph/releases)
- [Changelog](https://github.com/guptarohit/asciigraph/blob/master/CHANGELOG.md)
- [Commits](guptarohit/asciigraph@v0.8.1...v0.9.0)

Updates `github.com/hashicorp/vault/api` from 1.22.0 to 1.23.0
- [Release notes](https://github.com/hashicorp/vault/releases)
- [Changelog](https://github.com/hashicorp/vault/blob/main/CHANGELOG-v1.10-v1.15.md)
- [Commits](hashicorp/vault@api/v1.22.0...api/v1.23.0)

---
updated-dependencies:
- dependency-name: github.com/docker/cli
  dependency-version: 29.3.1+incompatible
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-updates
- dependency-name: github.com/getsentry/sentry-go
  dependency-version: 0.44.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-updates
- dependency-name: github.com/go-git/go-git/v5
  dependency-version: 5.17.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-updates
- dependency-name: github.com/moby/buildkit
  dependency-version: 0.28.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-updates
- dependency-name: github.com/guptarohit/asciigraph
  dependency-version: 0.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-updates
- dependency-name: github.com/hashicorp/vault/api
  dependency-version: 1.23.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Mar 30, 2026
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Mar 30, 2026
@dependabot @github

dependabot Bot commented on behalf of github Apr 6, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Apr 6, 2026
@dependabot
dependabot Bot deleted the dependabot/go_modules/all-updates-bfe5b0c976 branch April 6, 2026 02:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants