Skip to content

build(deps): bump the go-dependencies group across 1 directory with 7 updates #2524

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
jjbustamante merged 1 commit into from
Feb 11, 2026
Merged

build(deps): bump the go-dependencies group across 1 directory with 7 updates #2524

jjbustamante merged 1 commit into from
Feb 11, 2026

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 10, 2026

Bumps the go-dependencies group with 2 updates in the / directory: github.com/chainguard-dev/kaniko and golang.org/x/mod.

Updates github.com/chainguard-dev/kaniko from 1.25.6 to 1.25.7

Release notes

Sourced from github.com/chainguard-dev/kaniko's releases.

v1.25.7

What's Changed

Full Changelog: chainguard-forks/kaniko@v1.25.6...v1.25.7

Commits
  • 5e75c38 chore(deps): bump github.com/go-git/go-git/v5 from 5.16.4 to 5.16.5 (#302)
  • 5229881 chore(deps): bump golang.org/x/net from 0.49.0 to 0.50.0 (#303)
  • 0af3581 chore(deps): bump golang from d2e5acc to cc73743 in /deploy (#298)
  • 8752bc3 chore(deps): bump golang.org/x/sys from 0.40.0 to 0.41.0 (#300)
  • eb4f015 chore(deps): bump golang.org/x/oauth2 from 0.34.0 to 0.35.0 (#301)
  • fbca548 chore(deps): bump step-security/harden-runner in the actions group (#299)
  • db91e9b chore(deps): bump golang from 06d1251 to d2e5acc in /deploy (#296)
  • 2613beb chore(deps): bump github.com/aws/aws-sdk-go-v2/feature/s3/manager (#297)
  • a7cd1d3 chore(deps): bump busybox from 03db190 to 2d6218c in /deploy (#292)
  • a62bdc4 chore(deps): bump debian from 56ff6d3 to 98f4b71 in /deploy (#293)
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.47.0 to 0.48.0

Commits

Updates golang.org/x/mod from 0.32.0 to 0.33.0

Commits

Updates golang.org/x/oauth2 from 0.34.0 to 0.35.0

Commits

Updates golang.org/x/sys from 0.40.0 to 0.41.0

Commits
  • fc646e4 cpu: use IsProcessorFeaturePresent to calculate ARM64 on windows
  • f11c7bb windows: add IsProcessorFeaturePresent and processor feature consts
  • d25a7aa unix: add IoctlSetString on all platforms
  • 6fb913b unix: return early on error in Recvmsg
  • See full diff in compare view

Updates golang.org/x/term from 0.39.0 to 0.40.0

Commits

Updates golang.org/x/text from 0.33.0 to 0.34.0

Commits
  • 817fba9 go.mod: update golang.org/x dependencies
  • 3264de9 all: clean up old Go hacks
  • 74af298 all: fix tags in remaining Unicode tables
  • 117e03b all: delete old Unicode tables
  • 9463ea4 all: update to Unicode 17
  • 7278b25 internal/export/idna: update for post-Unicode 10 idna changes
  • f964ad8 internal/export/idna: delete old code
  • 678d34e unicode/norm: preserve QC Maybe bit in packed forminfo
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the go-dependencies group across 1 directory with 7…
087755e 
… updates

Bumps the go-dependencies group with 2 updates in the / directory: [github.com/chainguard-dev/kaniko](https://github.com/chainguard-dev/kaniko) and [golang.org/x/mod](https://github.com/golang/mod).


Updates `github.com/chainguard-dev/kaniko` from 1.25.6 to 1.25.7
- [Release notes](https://github.com/chainguard-dev/kaniko/releases)
- [Changelog](https://github.com/chainguard-forks/kaniko/blob/main/CHANGELOG.md)
- [Commits](chainguard-forks/kaniko@v1.25.6...v1.25.7)

Updates `golang.org/x/crypto` from 0.47.0 to 0.48.0
- [Commits](golang/crypto@v0.47.0...v0.48.0)

Updates `golang.org/x/mod` from 0.32.0 to 0.33.0
- [Commits](golang/mod@v0.32.0...v0.33.0)

Updates `golang.org/x/oauth2` from 0.34.0 to 0.35.0
- [Commits](golang/oauth2@v0.34.0...v0.35.0)

Updates `golang.org/x/sys` from 0.40.0 to 0.41.0
- [Commits](golang/sys@v0.40.0...v0.41.0)

Updates `golang.org/x/term` from 0.39.0 to 0.40.0
- [Commits](golang/term@v0.39.0...v0.40.0)

Updates `golang.org/x/text` from 0.33.0 to 0.34.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.33.0...v0.34.0)

---
updated-dependencies:
- dependency-name: github.com/chainguard-dev/kaniko
  dependency-version: 1.25.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: golang.org/x/crypto
  dependency-version: 0.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/mod
  dependency-version: 0.33.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/oauth2
  dependency-version: 0.35.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/sys
  dependency-version: 0.41.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/term
  dependency-version: 0.40.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: golang.org/x/text
  dependency-version: 0.34.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code type/chore Issue that requests non-user facing changes. labels Feb 10, 2026
@dependabot dependabot bot requested review from a team as code owners February 10, 2026 12:51
@dependabot dependabot bot added type/chore Issue that requests non-user facing changes. dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 10, 2026
@github-actions github-actions bot added this to the 0.41.0 milestone Feb 10, 2026
@jjbustamante jjbustamante merged commit b86f52e into main Feb 11, 2026
15 checks passed
@jjbustamante jjbustamante deleted the dependabot/go_modules/go-dependencies-a8ddd010e1 branch February 11, 2026 12:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@jjbustamante jjbustamante jjbustamante approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code type/chore Issue that requests non-user facing changes.

Projects

None yet

Milestone

0.41.0

Development

Successfully merging this pull request may close these issues.

1 participant

@jjbustamante