Skip to content

chore(deps): bump github.com/google/cel-go from 0.27.0 to 0.28.0#1298

Merged
tekton-robot merged 1 commit intomainfrom
dependabot/go_modules/github.com/google/cel-go-0.28.0
Apr 9, 2026
Merged

chore(deps): bump github.com/google/cel-go from 0.27.0 to 0.28.0#1298
tekton-robot merged 1 commit intomainfrom
dependabot/go_modules/github.com/google/cel-go-0.28.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Apr 8, 2026

Bumps github.com/google/cel-go from 0.27.0 to 0.28.0.

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.28.0

High-Level Changes

  • Enhanced JSON Interoperability: New support for JSON names across the checker, AST, and runtime allows for more seamless data handling when working with JSON-native structures.
  • Improved Developer Tooling: Integration is now smoother thanks to new utilities for converting Go errors into cel.Issues and more descriptive, context-aware error messages.
  • Greater Environment Flexibility: You can now redeclare variables as constants and export parse limit options, providing finer control over how CEL environments are configured and constrained.
  • Native Struct Improvements: Support for mixing CEL and native values within native structs simplifies the handling of complex, hybrid data types.

🚀 Features

🐞 Bug Fixes

🛠️ Maintenance & Internal

Full Changelog: https://github.com/google/cel-go/compare/v0.27.0...v0.28.0-alpha

Release v0.28.0-alpha

High-Level Changes

... (truncated)

Commits
  • 6b8f6d6 fix: cap format string precision to prevent memory exhaustion (#1292)
  • d942970 Default enable identifier escaping with backticks (#1295)
  • 7114ed2 Preserve runtime error node IDs from Resolve (#1290)
  • d91350b fix: cache concatList.Size() to prevent O(N^2) evaluation time (#1291)
  • 68bdd8c REPL -- cel-spec pb2 and json name support (#1294)
  • d19e782 Support zero-value literals in presence test inlining and fix shadowing bugs ...
  • 7c461fc Lint fixes for import (#1287)
  • 09e3119 Optionally include reachable fieldpaths in prompt (#1285)
  • ae49cd0 Json field names runtime support (#1286)
  • 3624b64 Add checker, ast, and type-provider support for JSON names (#1283)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
chore(deps): bump github.com/google/cel-go from 0.27.0 to 0.28.0
144ff92 
Bumps [github.com/google/cel-go](https://github.com/google/cel-go) from 0.27.0 to 0.28.0.
- [Release notes](https://github.com/google/cel-go/releases)
- [Commits](google/cel-go@v0.27.0...v0.28.0)

---
updated-dependencies:
- dependency-name: github.com/google/cel-go
  dependency-version: 0.28.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Used by dependabot - identifies all PRs created by dependabot go Pull requests that update go code labels Apr 8, 2026
@tekton-robot tekton-robot requested review from enarha and khrm April 8, 2026 21:04
@tekton-robot tekton-robot added do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files. labels Apr 8, 2026
@khrm
Copy link
Copy Markdown
Contributor

khrm commented Apr 9, 2026

/release-note-none

@tekton-robot tekton-robot added release-note-none Denotes a PR that doesnt merit a release note. and removed do-not-merge/release-note-label-needed Indicates that a PR should not merge because it's missing one of the release note labels. labels Apr 9, 2026
@khrm
Copy link
Copy Markdown
Contributor

khrm commented Apr 9, 2026

/kind misc

@tekton-robot tekton-robot added the kind/misc Categorizes issue or PR as a miscellaneuous one. label Apr 9, 2026
@khrm
Copy link
Copy Markdown
Contributor

khrm commented Apr 9, 2026

/lgtm

@tekton-robot tekton-robot added the lgtm Indicates that a PR is ready to be merged. label Apr 9, 2026
enarha
enarha reviewed Apr 9, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@enarha enarha left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/approve

@tekton-robot
Copy link
Copy Markdown

tekton-robot commented Apr 9, 2026

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: enarha

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@tekton-robot tekton-robot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Apr 9, 2026
@tekton-robot tekton-robot merged commit 028658d into main Apr 9, 2026
10 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/github.com/google/cel-go-0.28.0 branch April 9, 2026 09:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@enarha enarha enarha left review comments

@khrm khrm Awaiting requested review from khrm

Assignees

@khrm khrm

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. dependencies Used by dependabot - identifies all PRs created by dependabot go Pull requests that update go code kind/misc Categorizes issue or PR as a miscellaneuous one. lgtm Indicates that a PR is ready to be merged. release-note-none Denotes a PR that doesnt merit a release note. size/XXL Denotes a PR that changes 1000+ lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@khrm @tekton-robot @enarha