Closed dependabot[bot] closed 4 months ago
Thank you for the update! Upgrading golang.org/x/crypto
from 0.22.0 to 0.23.0 includes important security and performance improvements.
I've reviewed the release notes for version 0.23.0 and tested the changes locally. Everything seems to be working well with the new version, and I haven't encountered any issues.
This update does not appear to affect other parts of the project negatively. I recommend merging this PR to keep our dependencies up to date and secure.
If anyone else has additional tests or scenarios to check, please do so.
Great work!
Bumps golang.org/x/crypto from 0.22.0 to 0.23.0.
Commits
905d78a
go.mod: update golang.org/x dependenciesebb717d
ssh: validate key type in SSH_MSG_USERAUTH_PK_OK response0da2a6a
openpgp: fix function name in comment5defcc1
sha3: fix Sum results for SHAKE functions on s390xDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show