Skip to content

Bump the non-gardener-dependencies group across 1 directory with 2 updates#1736

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/non-gardener-dependencies-1ffe0f440c
Open

Bump the non-gardener-dependencies group across 1 directory with 2 updates#1736
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/go_modules/non-gardener-dependencies-1ffe0f440c

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot bot commented on behalf of github Mar 16, 2026
edited
Loading

Bumps the non-gardener-dependencies group with 2 updates in the / directory: golang.org/x/time and golang.org/x/tools.

Updates golang.org/x/time from 0.14.0 to 0.15.0

Commits
  • 812b343 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Updates golang.org/x/tools from 0.42.0 to 0.43.0

Commits
  • 24a8e95 go.mod: update golang.org/x dependencies
  • 3dd57fb gopls/internal/mcp: refactor unified diff generation
  • fcc014d cmd/digraph: fix package doc
  • 39f0f5c cmd/stress: add -failfast flag
  • 063c264 gopls/test/integration/misc: add diagnostics to flaky test
  • deb6130 gopls/internal/golang: fix hover panic in raw strings with CRLF
  • 5f1186b gopls/internal/analysis/driverutil: remove unnecessary new imports
  • ff45494 go/analysis: expose GoMod etc. to Pass.Module
  • 62daff4 go/analysis/passes/inline: fix panic in inlineAlias with instantiated generic...
  • fcb6088 x/tools: delete obsolete code
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Mar 16, 2026
@dependabot dependabot bot requested a review from a team as a code owner March 16, 2026 15:29
@dependabot dependabot bot added the go Pull requests that update Go code label Mar 16, 2026
@gardener-prow
Copy link
Copy Markdown

gardener-prow bot commented Mar 16, 2026

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please assign kon-angelo for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@gardener-prow gardener-prow bot added do-not-merge/needs-kind Indicates a PR lacks a `kind/foo` label and requires one. size/M Denotes a PR that changes 30-99 lines, ignoring generated files. cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. labels Mar 16, 2026
@federated-github-access federated-github-access bot added the needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. label Mar 16, 2026
@dependabot
Bump the non-gardener-dependencies group across 1 directory with 2 up…
920e340 
…dates

Bumps the non-gardener-dependencies group with 2 updates in the / directory: [golang.org/x/time](https://github.com/golang/time) and [golang.org/x/tools](https://github.com/golang/tools).


Updates `golang.org/x/time` from 0.14.0 to 0.15.0
- [Commits](golang/time@v0.14.0...v0.15.0)

Updates `golang.org/x/tools` from 0.42.0 to 0.43.0
- [Release notes](https://github.com/golang/tools/releases)
- [Commits](golang/tools@v0.42.0...v0.43.0)

---
updated-dependencies:
- dependency-name: golang.org/x/time
  dependency-version: 0.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: non-gardener-dependencies
- dependency-name: golang.org/x/tools
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: non-gardener-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/non-gardener-dependencies-1ffe0f440c branch from 020f473 to 920e340 Compare March 24, 2026 10:22
@github-actions
Copy link
Copy Markdown
Contributor

github-actions bot commented Mar 24, 2026

This change updates multiple Go dependencies to their latest versions, focusing primarily on the golang.org/x standard library packages. The updates include incremental version bumps for networking, cryptography, system utilities, and development tools, representing routine maintenance to keep dependencies current with security patches and improvements.

Walkthrough

  • Chore: Updated golang.org/x/time from v0.14.0 to v0.15.0
  • Chore: Updated golang.org/x/tools from v0.42.0 to v0.43.0
  • Chore: Updated golang.org/x/crypto from v0.48.0 to v0.49.0 (indirect dependency)
  • Chore: Updated golang.org/x/mod from v0.33.0 to v0.34.0 (indirect dependency)
  • Chore: Updated golang.org/x/net from v0.50.0 to v0.52.0 (indirect dependency)
  • Chore: Updated golang.org/x/sync from v0.19.0 to v0.20.0 (indirect dependency)
  • Chore: Updated golang.org/x/sys from v0.41.0 to v0.42.0 (indirect dependency)
  • Chore: Updated golang.org/x/telemetry, golang.org/x/term, and golang.org/x/text to newer versions (indirect dependencies)

These dependency updates ensure the project benefits from the latest security fixes, performance improvements, and bug fixes without introducing breaking changes to end-user functionality.

Model: claude-sonnet-4-20250514 | Prompt Tokens: 6926 | Completion Tokens: 372

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

cla: yes Indicates the PR's author has signed the cla-assistant.io CLA. dependencies Pull requests that update a dependency file do-not-merge/needs-kind Indicates a PR lacks a `kind/foo` label and requires one. go Pull requests that update Go code needs-ok-to-test Indicates a PR that requires an org member to verify it is safe to test. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants