Skip to content

build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4#12186

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4
Open

build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4#12186
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 3, 2026
edited
Loading

Bumps github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4.

Release notes

Sourced from github.com/go-jose/go-jose/v4's releases.

v4.1.4

What's Changed

Fixes Panic in JWE decryption. See GHSA-78h2-9frx-2jm8

Full Changelog: go-jose/go-jose@v4.1.3...v4.1.4

Commits

@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Apr 3, 2026
@update-docs
Copy link
Copy Markdown

update-docs bot commented Apr 3, 2026

Thanks for opening this pull request! The maintainers of this repository would appreciate it if you would create a changelog item based on your changes.

@mmattel mmattel requested a review from mklos-kw April 7, 2026 07:41
@mmattel
Copy link
Copy Markdown
Contributor

mmattel commented Apr 7, 2026

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4 branch 2 times, most recently from 4692210 to 9c63629 Compare April 8, 2026 09:55
@mmattel
Copy link
Copy Markdown
Contributor

mmattel commented Apr 8, 2026

@dependabot rebase

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 8, 2026

Looks like this PR is already up-to-date with master! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@mmattel
Copy link
Copy Markdown
Contributor

mmattel commented Apr 8, 2026

@dependabot rebase

@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot bot commented on behalf of github Apr 8, 2026

Looks like this PR is already up-to-date with master! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@mmattel
Copy link
Copy Markdown
Contributor

mmattel commented Apr 8, 2026

@dependabot recreate

@dependabot
build(deps): bump github.com/go-jose/go-jose/v4 from 4.1.3 to 4.1.4
cc7fa85 
Bumps [github.com/go-jose/go-jose/v4](https://github.com/go-jose/go-jose) from 4.1.3 to 4.1.4.
- [Release notes](https://github.com/go-jose/go-jose/releases)
- [Commits](go-jose/go-jose@v4.1.3...v4.1.4)

---
updated-dependencies:
- dependency-name: github.com/go-jose/go-jose/v4
  dependency-version: 4.1.4
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/github.com/go-jose/go-jose/v4-4.1.4 branch from 9c63629 to cc7fa85 Compare April 8, 2026 13:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mklos-kw mklos-kw Awaiting requested review from mklos-kw

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mmattel