Skip to content

chore(deps): upgrade Go dependencies and CI action versions#4580

Merged
appleboy merged 1 commit intomasterfrom
chore/upgrade-deps-and-actions
Mar 13, 2026
Merged

chore(deps): upgrade Go dependencies and CI action versions#4580
appleboy merged 1 commit intomasterfrom
chore/upgrade-deps-and-actions

Conversation

@appleboy
Copy link
Member

@appleboy appleboy commented Mar 13, 2026

Summary

  • Upgrade Go module dependencies to latest versions (golang.org/x/*, go-json, mimetype, protobuf)
  • Bump golangci-lint from v2.9 to v2.11
  • Bump aquasecurity/trivy-action from 0.34.2 to 0.35.0

Test plan

  • CI lint job passes with golangci-lint v2.11
  • All test matrix jobs pass
  • Trivy security scan runs successfully with v0.35.0

🤖 Generated with Claude Code

@appleboy @claude
chore(deps): upgrade Go dependencies and CI action versions
21ad68f 
- Bump golangci-lint from v2.9 to v2.11
- Bump aquasecurity/trivy-action from 0.34.2 to 0.35.0
- Upgrade golang.org/x packages (net, crypto, sys, text, arch)
- Upgrade go-json, mimetype, and protobuf to latest patch versions

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Copilot AI review requested due to automatic review settings March 13, 2026 14:37
@appleboy appleboy added this to the v1.13 milestone Mar 13, 2026
@appleboy appleboy added the dependencies Pull requests that update a dependency file label Mar 13, 2026
Copilot AI reviewed Mar 13, 2026
View reviewed changes
Copy link
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Updates Go module dependencies and CI security/lint tooling versions to keep the project current and address upstream fixes.

Changes:

  • Bumped several Go dependencies (e.g., github.com/goccy/go-json, golang.org/x/*, google.golang.org/protobuf).
  • Updated Trivy GitHub Action version used for vulnerability scanning.
  • Updated the configured golangci-lint version in the CI workflow.

Reviewed changes

Copilot reviewed 3 out of 4 changed files in this pull request and generated no comments.

File Description
go.mod Updates required dependency versions (direct + indirect).
go.sum Synchronizes module checksums with the updated dependency set.
.github/workflows/trivy-scan.yml Bumps aquasecurity/trivy-action used for SARIF + log output scans.
.github/workflows/gin.yml Bumps the configured golangci-lint version used in CI linting.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

@appleboy appleboy merged commit 48667a2 into master Mar 13, 2026
27 of 29 checks passed
@appleboy appleboy deleted the chore/upgrade-deps-and-actions branch March 13, 2026 14:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

v1.13

Development

Successfully merging this pull request may close these issues.

2 participants

@appleboy