Skip to content

Comments

chore(deps): bump the go-modules group with 3 updates#75

Merged
idiap-bot merged 1 commit intomainfrom
dependabot/go_modules/go-modules-977d7e1bf3
Feb 21, 2026
Merged

chore(deps): bump the go-modules group with 3 updates#75
idiap-bot merged 1 commit intomainfrom
dependabot/go_modules/go-modules-977d7e1bf3

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 20, 2026

Bumps the go-modules group with 3 updates: github.com/aws/smithy-go, github.com/github/go-spdx/v2 and github.com/google/go-containerregistry.

Updates github.com/aws/smithy-go from 1.24.0 to 1.24.1

Release notes

Sourced from github.com/aws/smithy-go's releases.

Release (2026-02-20)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.24.1
    • Feature: Add new middleware functions to get event stream output from middleware
Changelog

Sourced from github.com/aws/smithy-go's changelog.

Release (2026-02-20)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.24.1
    • Feature: Add new middleware functions to get event stream output from middleware

Release (2025-12-01)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.24.0
    • Feature: Improve allocation footprint of the middleware stack. This should convey a ~10% reduction in allocations per SDK request.

Release (2025-11-03)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.23.2
    • Bug Fix: Adjust the initial sizes of each middleware phase to avoid some unnecessary reallocation.
    • Bug Fix: Avoid unnecessary allocation overhead from the metrics system when not in use.

Release (2025-10-15)

General Highlights

  • Dependency Update: Bump minimum go version to 1.23.
  • Dependency Update: Updated to the latest SDK module versions

Release (2025-09-18)

Module Highlights

  • github.com/aws/smithy-go/aws-http-auth: v1.1.0
    • Feature: Added support for SIG4/SIGV4A querystring authentication.

Release (2025-08-27)

General Highlights

  • Dependency Update: Updated to the latest SDK module versions

Module Highlights

  • github.com/aws/smithy-go: v1.23.0
    • Feature: Sort map keys in JSON Document types.

Release (2025-07-24)

... (truncated)

Commits

Updates github.com/github/go-spdx/v2 from 2.3.6 to 2.4.0

Release notes

Sourced from github.com/github/go-spdx/v2's releases.

Release v2.4.0

What's Changed

Full Changelog: github/go-spdx@v2.3.6...v2.4.0

Commits
  • c1dc1cd Merge pull request #134 from github/v2.4.0-prep
  • f4547aa update version to v2.4.0
  • ab7fd61 Merge pull request #130 from github/auto-update-licenses
  • b48955b Merge branch 'main' into auto-update-licenses
  • 2c4a570 Merge pull request #133 from github/ci/pr-129
  • 2289847 Merge branch 'main' into ci/pr-129
  • 148e586 Merge pull request #132 from github/elr/benchmark
  • 28d465d use MIT shortcut for Satisfies and ValidateLicenses
  • 586dda9 add benchmarks specific to methods
  • 6446b5e Add updated license files
  • Additional commits viewable in compare view

Updates github.com/google/go-containerregistry from 0.20.7 to 0.21.0

Release notes

Sourced from github.com/google/go-containerregistry's releases.

v0.21.0

This release updates the minimum Go version to 1.25.6.

What's Changed

New Contributors

Full Changelog: google/go-containerregistry@v0.20.7...v0.21.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the go-modules group with 3 updates
ebcd7a1 
Bumps the go-modules group with 3 updates: [github.com/aws/smithy-go](https://github.com/aws/smithy-go), [github.com/github/go-spdx/v2](https://github.com/github/go-spdx) and [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry).


Updates `github.com/aws/smithy-go` from 1.24.0 to 1.24.1
- [Release notes](https://github.com/aws/smithy-go/releases)
- [Changelog](https://github.com/aws/smithy-go/blob/main/CHANGELOG.md)
- [Commits](aws/smithy-go@v1.24.0...v1.24.1)

Updates `github.com/github/go-spdx/v2` from 2.3.6 to 2.4.0
- [Release notes](https://github.com/github/go-spdx/releases)
- [Commits](github/go-spdx@v2.3.6...v2.4.0)

Updates `github.com/google/go-containerregistry` from 0.20.7 to 0.21.0
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Commits](google/go-containerregistry@v0.20.7...v0.21.0)

---
updated-dependencies:
- dependency-name: github.com/aws/smithy-go
  dependency-version: 1.24.1
  dependency-type: indirect
  update-type: version-update:semver-patch
  dependency-group: go-modules
- dependency-name: github.com/github/go-spdx/v2
  dependency-version: 2.4.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: github.com/google/go-containerregistry
  dependency-version: 0.21.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Feb 20, 2026
@idiap-bot idiap-bot added the semver:patch A change requiring a patch version bump label Feb 20, 2026
@idiap-bot idiap-bot merged commit a855720 into main Feb 21, 2026
9 of 10 checks passed
@idiap-bot idiap-bot deleted the dependabot/go_modules/go-modules-977d7e1bf3 branch February 21, 2026 00:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@idiap-bot-reviewer idiap-bot-reviewer idiap-bot-reviewer approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code semver:patch A change requiring a patch version bump

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@idiap-bot-reviewer @idiap-bot