Skip to content

chore(deps): minor: golang.org/x/net, golang.org/x/sys [examples/lambda]#610

Merged
nina9753 merged 1 commit into
mainfrom
engraver-auto-version-upgrade/minorpatch/go/lambda/4-1781593317
Jun 26, 2026
Merged

chore(deps): minor: golang.org/x/net, golang.org/x/sys [examples/lambda]#610
nina9753 merged 1 commit into
mainfrom
engraver-auto-version-upgrade/minorpatch/go/lambda/4-1781593317

Conversation

@gh-worker-campaigns-3e9aa4

@gh-worker-campaigns-3e9aa4 gh-worker-campaigns-3e9aa4 Bot commented Jun 16, 2026

Copy link
Copy Markdown
Contributor

Summary: Dependency update — 2 packages upgraded (MINOR changes included)

Manifests changed:

  • examples/lambda (go)

✅ Action Required: Please review the changes below. If they look good, approve and merge this PR.

Updates

Package From To Type Dep Type Vulnerabilities Fixed
golang.org/x/net v0.49.0 v0.56.0 minor Transitive 7 UNKNOWN
golang.org/x/sys v0.42.0 v0.46.0 minor Transitive 1 UNKNOWN

Security Details

ℹ️ Other Vulnerabilities (8)
Package CVE Severity Summary Unsafe Version Fixed In
golang.org/x/net GO-2026-5025 unknown Invoking incorrect handling of namespaced elements in foreign content in golang.org/x/net/html v0.49.0 0.55.0
golang.org/x/net GO-2026-4918 unknown Infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE in net/http/internal/http2 in golang.org/x/net v0.49.0 0.53.0
golang.org/x/net GO-2026-5028 unknown Invoking denial of service when parsing arbitrary HTML in golang.org/x/net/html v0.49.0 0.55.0
golang.org/x/net GO-2026-5027 unknown Invoking incorrect handling of HTML elements in foreign content in golang.org/x/net/html v0.49.0 0.55.0
golang.org/x/net GO-2026-5030 unknown Invoking duplicate attributes can cause XSS in golang.org/x/net/html v0.49.0 0.55.0
golang.org/x/net GO-2026-5026 unknown Invoking failure to reject ASCII-only Punycode-encoded labels in golang.org/x/net/idna v0.49.0 0.55.0
golang.org/x/net GO-2026-5029 unknown Invoking incorrect handling of character references in DOCTYPE nodes in golang.org/x/net/html v0.49.0 0.55.0
golang.org/x/sys GO-2026-5024 unknown Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows v0.42.0 0.44.0

Review Checklist

Standard review:

  • Review changes for compatibility with your code
  • Check for breaking changes in release notes
  • Run tests locally or wait for CI
  • Approve and merge this PR

Update Mode: all_vulns

🤖 Generated by DataDog Automated Dependency Management System

@campaigner-prod campaigner-prod Bot marked this pull request as ready for review June 16, 2026 23:25
@campaigner-prod campaigner-prod Bot requested a review from a team as a code owner June 16, 2026 23:25
@dd-prapprover

dd-prapprover Bot commented Jun 16, 2026
edited
Loading

Copy link
Copy Markdown

PRApprover will approve and merge this PR, FAQ, #dx-source-code-management

🛠️ PRApproval Status

  • ✅ PR is eligible for auto-approval by rule dependency-management-version-updater - 2026-06-16T23:26:18Z
  • ✅ CI tests passed - 2026-06-16T23:26:22Z
  • ✅ Approved (commit: b02bfe4) - 2026-06-16T23:26:24Z
  • ✅ Merge Started
  • ⬜ Merged

➡️ Current phase: merge in progress...

dd-prapprover[bot]
dd-prapprover Bot approved these changes Jun 16, 2026
View reviewed changes

@dd-prapprover dd-prapprover Bot left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This PR has been automatically approved by the DD PR Approver bot.

@dd-prapprover

dd-prapprover Bot commented Jun 16, 2026

Copy link
Copy Markdown

/merge

@gh-worker-devflow-routing-ef8351

gh-worker-devflow-routing-ef8351 Bot commented Jun 16, 2026
edited
Loading

Copy link
Copy Markdown

View all feedbacks in Devflow UI.

2026-06-16 23:26:34 UTC ℹ️ Start processing command /merge

2026-06-16 23:26:40 UTC ℹ️ MergeQueue: pull request added to the queue

The expected merge time in main is approximately 13m (p90).

2026-06-16 23:38:21 UTCMergeQueue: The checks failed on this merge request

Tests failed on this commit 012230d:

What to do next?

  • Investigate the failures and when ready, re-add your pull request to the queue!
  • If your PR checks are green, try to rebase/merge. It might be because the CI run is a bit old.
  • Any question, go check the FAQ.

LuuOW
LuuOW reviewed Jun 17, 2026
View reviewed changes

@LuuOW LuuOW left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Technical audit: code patterns and implementation verified for alignment with modern software engineering standards.

@nina9753 nina9753 merged commit 5796e51 into main Jun 26, 2026
19 of 20 checks passed
@nina9753 nina9753 deleted the engraver-auto-version-upgrade/minorpatch/go/lambda/4-1781593317 branch June 26, 2026 19:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dd-prapprover dd-prapprover[bot] dd-prapprover[bot] approved these changes
@danielledarfour danielledarfour Awaiting requested review from danielledarfour danielledarfour is a code owner automatically assigned from DataDog/serverless-onboarding-and-enablement
+1 more reviewer
@LuuOW LuuOW LuuOW left review comments
Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

adms-dependency-update adms-go adms-minor-update adms-mode-all-vulns campaigner-automated-change mergequeue-status: rejected

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@LuuOW @nina9753