Bump the go_modules group across 12 directories with 5 updates#21830

Closed

dependabot[bot] wants to merge 1 commit into

mainfrom

dependabot/go_modules/go/ql/integration-tests/bazel-sample-1/src/go_modules-cb05fdd51f

Contributor

dependabot Bot commented on behalf of github May 11, 2026 •

edited

Loading

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

Bumps the go_modules group with 1 update in the /go/ql/integration-tests/bazel-sample-1/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/bazel-sample-2/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/go-mod-sample/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/go-mod-without-version/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/make-sample/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/ninja-sample/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/single-go-mod-in-root/src directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/two-go-mods-nested-one-in-root/src directory: golang.org/x/net.
Bumps the go_modules group with 2 updates in the /go/ql/test/experimental/CWE-321-V2 directory: github.com/go-jose/go-jose/v3 and github.com/golang-jwt/jwt/v5.
Bumps the go_modules group with 1 update in the /go/ql/test/experimental/CWE-522-DecompressionBombs directory: github.com/ulikunitz/xz.
Bumps the go_modules group with 1 update in the /go/ql/test/library-tests/semmle/go/frameworks/Fasthttp directory: golang.org/x/net.
Bumps the go_modules group with 1 update in the /go/ql/test/library-tests/semmle/go/frameworks/StdlibTaintFlow directory: golang.org/x/net.

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.23.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.5

Release notes

Sourced from github.com/go-jose/go-jose/v3's releases.

v3.0.5

What's Changed

Fixes GHSA-78h2-9frx-2jm8

We recommend migrating from v3 to v4, and we will stop support v3 in the near future.

Full Changelog: go-jose/go-jose@v3.0.4...v3.0.5

v3.0.4

What's Changed

Backport fix for GHSA-c6gw-w398-hv78 CVE-2025-27144 go-jose/go-jose#174

Full Changelog: go-jose/go-jose@v3.0.3...v3.0.4

Version 3.0.3

Fixed

Limit decompression output size to prevent a DoS. Backport from v4.0.1.

Version 3.0.2

Fixed

DecryptMulti: handle decompression error (#19)

Changed

jwe/CompactSerialize: improve performance (#67)

Increase the default number of PBKDF2 iterations to 600k (#48)

Return the proper algorithm for ECDSA keys (#45)

Update golang.org/x/crypto to v0.19 (#94)

Added

Add Thumbprint support for opaque signers (#38)

Version 3.0.1

Fixed

Security issue: an attacker specifying a large "p2c" value can cause JSONWebEncryption.Decrypt and JSONWebEncryption.DecryptMulti to consume large amounts of CPU, causing a DoS. Thanks to Matt Schwager (@mschwager) for the disclosure and to Tom Tervoort for originally publishing the category of attack. https://i.blackhat.com/BH-US-23/Presentations/US-23-Tervoort-Three-New-Attacks-Against-JSON-Web-Tokens.pdf

The release is tagged off the release-v3.0.1 branch to avoid mixing in some as-yet unreleased changes on the v3 branch.

Commits

be2f654 ci: update Go versions for GHA workflows (#221)
0246416 Merge commit from fork
5253038 Backport fix 167 to v3 (#174)
047dc99 CI: Update github actions and go version (#173)
0f017e9 Revert #26 (ignore unsupported JWKs in Sets) (#131)
3e2bbef Unmarshal jwk keys with unsupported key type or algorithm into empty … (#26)
add6a28 v3: backport decompression limit fix (#107)
11bb4e7 doc: in v3 branch's README, point to v4 as latest (#101)
863f73b v3.0.2: Update changelog (#95)
bdbc794 Update golang.org/x/crypto to v0.19 (backport) (#94)
Additional commits viewable in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.0.0 to 5.2.2

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.2.2

What's Changed

Fixed GHSA-mh63-6h87-95cp by @mfridman

Fixed some typos by @Ashikpaul in golang-jwt/jwt#382

build: add go1.22 to ci workflows by @mfridman in golang-jwt/jwt#383

Bump golangci/golangci-lint-action from 4 to 5 by @dependabot in golang-jwt/jwt#387

Bump golangci/golangci-lint-action from 5 to 6 by @dependabot in golang-jwt/jwt#389

chore: bump ci tests to include go1.23 by @mfridman in golang-jwt/jwt#405

Fix jwt -show by @AlexanderYastrebov in golang-jwt/jwt#406

docs: typo by @kvii in golang-jwt/jwt#407

Update SECURITY.md by @oxisto in golang-jwt/jwt#416

Update jwt.Parse example to use jwt.WithValidMethods by @mattt in golang-jwt/jwt#425

New Contributors

@Ashikpaul made their first contribution in golang-jwt/jwt#382

@kvii made their first contribution in golang-jwt/jwt#407

@mattt made their first contribution in golang-jwt/jwt#425

Full Changelog: golang-jwt/jwt@v5.2.1...v5.2.2

v5.2.1

What's Changed

chore: remove unnecessary conversions from tests by @estensen in golang-jwt/jwt#370

Trivial: Typo fix for ECDSA error message by @tjs-cinemo in golang-jwt/jwt#373

Fix incorrect error return by @ss49919201 in golang-jwt/jwt#371

New Contributors

@tjs-cinemo made their first contribution in golang-jwt/jwt#373

@ss49919201 made their first contribution in golang-jwt/jwt#371

Full Changelog: golang-jwt/jwt@v5.2.0...v5.2.1

v5.2.0

What's Changed

Exported NewValidator by @oxisto in golang-jwt/jwt#349

Improve ErrInvalidKeyType error messages by @Laurin-Notemann in golang-jwt/jwt#361

Update MIGRATION_GUIDE.md by @jbarham in golang-jwt/jwt#363

New Contributors

@Laurin-Notemann made their first contribution in golang-jwt/jwt#361

@jbarham made their first contribution in golang-jwt/jwt#363

Full Changelog: golang-jwt/jwt@v5.1.0...v5.2.0

v5.1.0

What's Changed

Using jwt's native ErrInvalidType instead of json.UnsupportedTypeError by @oxisto in golang-jwt/jwt#316

Fix typos in comments and test names by @alexandear in golang-jwt/jwt#317

Format: add whitespaces, remove empty lines by @alexandear in golang-jwt/jwt#319

Refactor example: use io.ReadAll instead of io.Copy by @alexandear in golang-jwt/jwt#320

... (truncated)

Commits

0951d18 Merge commit from fork
c035977 Update Parse example to use WithValidMethods (#425)
bc8bdca Update SECURITY.md (#416)
5ec246c docs: typo (#407)
0123f1a Fix jwt -show (#406)
f961c72 chore: bump ci tests to include go1.23 (#405)
62e504c Bump golangci/golangci-lint-action from 5 to 6 (#389)
1a56dcf Bump golangci/golangci-lint-action from 4 to 5 (#387)
c8043ea build: add go1.22 to ci workflows (#383)
7c3f6dc Update README.md (#382)
Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.12.0 to 0.19.0

Commits

405cb3b go.mod: update golang.org/x dependencies
913d3ae x509roots/fallback: update bundle
dbb6ec1 ssh/test: skip tests on darwin that fail on the darwin-amd64-longtest LUCI bu...
403f699 ssh/test: avoid leaking a net.UnixConn in server.TryDialWithAddr
055043d go.mod: update golang.org/x dependencies
08396bb internal/poly1305: drop Go 1.12 compatibility
9d2ee97 ssh: implement strict KEX protocol changes
4e5a261 ssh: close net.Conn on all NewServerConn errors
152cdb1 x509roots/fallback: update bundle
fdfe1f8 ssh: defer channel window adjustment
Additional commits viewable in compare view

Updates github.com/ulikunitz/xz from 0.5.11 to 0.5.14

Commits

7184815 Preparation of release v0.5.14
88ddf1d Address Security Issue GHSA-jc7w-c686-c4v9
c8314b8 Add new package xio with WriteCloserStack
4f11dce Update README.md and SECURITY.md to address security questions
f56ebbf TODO.md: fix a typo
See full diff in compare view

Updates golang.org/x/net from 0.8.0 to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Updates golang.org/x/net from 0.0.0-20201010224723-4f7140c49acb to 0.38.0

Commits

e1fcd82 html: properly handle trailing solidus in unquoted attribute value in foreign...
ebed060 internal/http3: fix build of tests with GOEXPERIMENT=nosynctest
1f1fa29 publicsuffix: regenerate table
1215081 http2: improve error when server sends HTTP/1
312450e html: ensure <search> tag closes <p> and update tests
09731f9 http2: improve handling of lost PING in Server
55989e2 http2/h2c: use ResponseController for hijacking connections
2914f46 websocket: re-recommend gorilla/websocket
99b3ae0 go.mod: update golang.org/x dependencies
85d1d54 go.mod: update golang.org/x dependencies
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
You can disable automated security fix PRs for this repo from the Security Alerts page.


          Bump the go_modules group across 12 directories with 5 updates

4ad29a0

Bumps the go_modules group with 1 update in the /go/ql/integration-tests/bazel-sample-1/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/bazel-sample-2/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/go-mod-sample/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/go-mod-without-version/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/make-sample/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/ninja-sample/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/single-go-mod-in-root/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/integration-tests/two-go-mods-nested-one-in-root/src directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 2 updates in the /go/ql/test/experimental/CWE-321-V2 directory: [github.com/go-jose/go-jose/v3](https://github.com/go-jose/go-jose) and [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt).
Bumps the go_modules group with 1 update in the /go/ql/test/experimental/CWE-522-DecompressionBombs directory: [github.com/ulikunitz/xz](https://github.com/ulikunitz/xz).
Bumps the go_modules group with 1 update in the /go/ql/test/library-tests/semmle/go/frameworks/Fasthttp directory: [golang.org/x/net](https://github.com/golang/net).
Bumps the go_modules group with 1 update in the /go/ql/test/library-tests/semmle/go/frameworks/StdlibTaintFlow directory: [golang.org/x/net](https://github.com/golang/net).


Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.23.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `github.com/go-jose/go-jose/v3` from 3.0.0 to 3.0.5
- [Release notes](https://github.com/go-jose/go-jose/releases)
- [Commits](go-jose/go-jose@v3.0.0...v3.0.5)

Updates `github.com/golang-jwt/jwt/v5` from 5.0.0 to 5.2.2
- [Release notes](https://github.com/golang-jwt/jwt/releases)
- [Commits](golang-jwt/jwt@v5.0.0...v5.2.2)

Updates `golang.org/x/crypto` from 0.12.0 to 0.19.0
- [Commits](golang/crypto@v0.12.0...v0.19.0)

Updates `github.com/ulikunitz/xz` from 0.5.11 to 0.5.14
- [Commits](ulikunitz/xz@v0.5.11...v0.5.14)

Updates `golang.org/x/net` from 0.8.0 to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

Updates `golang.org/x/net` from 0.0.0-20201010224723-4f7140c49acb to 0.38.0
- [Commits](golang/net@v0.23.0...v0.38.0)

---
updated-dependencies:
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: github.com/go-jose/go-jose/v3
  dependency-version: 3.0.5
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: github.com/golang-jwt/jwt/v5
  dependency-version: 5.2.2
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/crypto
  dependency-version: 0.19.0
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: github.com/ulikunitz/xz
  dependency-version: 0.5.14
  dependency-type: direct:production
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: indirect
  dependency-group: go_modules
- dependency-name: golang.org/x/net
  dependency-version: 0.38.0
  dependency-type: direct:production
  dependency-group: go_modules
...

Signed-off-by: dependabot[bot] <support@github.com>

dependabot Bot requested a review from a team as a code owner

May 11, 2026 14:58

dependabot Bot added dependencies Go labels

github-actions Bot added the documentation label

Contributor

owen-mc commented May 11, 2026

@dependabot ignore golang.org/x/net github.com/ulikunitz/xz golang.org/x/crypto github.com/golang-jwt/jwt/v5 github.com/go-jose/go-jose/v3

Contributor

owen-mc commented May 11, 2026

@dependabot ignore golang.org/x/net

Contributor Author

dependabot Bot commented on behalf of github May 11, 2026

OK, I won't notify you about golang.org/x/net again, unless you unignore it.

Contributor

owen-mc commented May 11, 2026

@dependabot ignore github.com/ulikunitz/xz

Contributor Author

dependabot Bot commented on behalf of github May 11, 2026

OK, I won't notify you about github.com/ulikunitz/xz again, unless you unignore it.

Contributor

owen-mc commented May 11, 2026

@dependabot ignore golang.org/x/crypto

Contributor Author

dependabot Bot commented on behalf of github May 11, 2026

OK, I won't notify you about golang.org/x/crypto again, unless you unignore it.

Contributor

owen-mc commented May 11, 2026

@dependabot ignore github.com/golang-jwt/jwt/v5

Contributor Author

dependabot Bot commented on behalf of github May 11, 2026

OK, I won't notify you about github.com/golang-jwt/jwt/v5 again, unless you unignore it.

Contributor

owen-mc commented May 11, 2026

@dependabot ignore github.com/go-jose/go-jose/v3

Contributor Author

dependabot Bot commented on behalf of github May 11, 2026

OK, I won't notify you about github.com/go-jose/go-jose/v3 again, unless you unignore it.

owen-mc closed this

Contributor Author

dependabot Bot commented on behalf of github May 11, 2026

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml

dependabot Bot deleted the dependabot/go_modules/go/ql/integration-tests/bazel-sample-1/src/go_modules-cb05fdd51f branch

May 11, 2026 15:22

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies documentation Go