Bump the dev-dependencies group across 1 directory with 20 updates #253

dependabot · 2025-11-24T04:05:29Z

Bumps the dev-dependencies group with 10 updates in the / directory:

Package	From	To
github.com/gin-gonic/gin	`1.10.1`	`1.11.0`
github.com/golang-jwt/jwt/v5	`5.2.2`	`5.3.0`
github.com/jarcoal/httpmock	`1.4.0`	`1.4.1`
github.com/samber/lo	`1.51.0`	`1.52.0`
github.com/bytedance/sonic/loader	`0.3.0`	`0.4.0`
github.com/gabriel-vasile/mimetype	`1.4.9`	`1.4.11`
github.com/go-playground/validator/v10	`10.27.0`	`10.28.0`
github.com/go-resty/resty/v2	`2.16.5`	`2.17.0`
github.com/stretchr/objx	`0.5.2`	`0.5.3`
github.com/ugorji/go/codec	`1.3.0`	`1.3.1`

Updates github.com/gin-gonic/gin from 1.10.1 to 1.11.0

Release notes

Sourced from github.com/gin-gonic/gin's releases.

v1.11.0

Changelog

Features

6ca8ddb1aed78d9ffaf984e5489111838242fedb: feat(binding): add BindPlain (#3904) (@guonaihong)

4ccfa7c275c449990818e46759d5974a953cc1c1: feat(binding): add support for unixMilli and unixMicro (#4190) (@takanuva15)

9d7c0e9e1a301f417df9dc89a8cadc3bf9063db2: feat(context): GetXxx added support for more go native types (#3633) (@CC11001100)

fb09c825e8e13134daaa90debfda198520e1b347: feat(context): add SetCookieData (#4240) (@Narita-1095305)

f05f966a0824b1d302ee556183e2579c91954266: feat(form): Support default values for collections in form binding (#4048) (@takanuva15)

3cb30679b5e3021db16c776ed7e70d380586e9ce: feat(form): add array collection format in form binding (#3986) (@slowhigh)

24d67647cb9b4e0bbdcdec7f0c2086e8004e1572: feat(form): add custom string slice for form tag unmarshal (#3970) (#3971) (@bruceNu1l)

8791c96960e719ff2f41e24163c5898656cee474: feat(fs): Export, test and document OnlyFilesFS (#3939) (@joeig)

71496abe6836462e2ed70436b7d72ea2a3585417: feat(fs): Implement loading HTML from http.FileSystem (#4053) (@sunshineplan)

3ac729dc4a497d360a23b9d7e766c622b3c99f51: feat(gin): support http3 using quic-go/quic-go (#3210) (@thinkerou)

4621b7ac982335d9a74432e182dd2bfc6d841431: feat(router): add literal colon support (#1432) (#2857) (@wssccc)

dbd8a2515093ad47cadc5c1fface89861a0b765c: feat: added AbortWithStatusPureJSON() in Context (#4290) (@ddevsr)

688a429d19d8c804447bb889d3635e2c31a5564d: feat: support custom json codec at runtime (#3391) (@timandy)

Bug fixes

8fb3136664254d7c592127f00d52849caba18a67: Revert "fix(time): binding time with empty value (#4103)" (#4245) (@appleboy)

e737e3e267beb4dc3bab16cc8be59e3902d98a94: fix(binding): prevent duplicate decoding and add validation in decodeToml (#4193) (@revevide)

4f339e6a35b163d31b30916b37f4176d385f41bd: fix(context): YAML judgment logic in Negotiate (#3966) (@RedCrazyGhost)

36b0dede4b8c4a67d92c4107cebc5a068364321d: fix(context): check handler is nil (#3413) (@hktalent)

e0d46ded6cb6974d55a255ab122d1aa6ca0cd60e: fix(context): verify URL is Non-nil in initQueryCache() (#3969) (@adrianosela)

dd33ff793861cee3baa77d575ff319119c366f3a: fix(docs): missing go markdown codeblock (#4266) (@vdusart)

b38c59de7fef67400a1c98efeae700a689c45783: fix(errors): change Unwrap method receiver to value type (#4232) (@OrkhanAlikhanov)

28e57f58b184b2305ace192e02496bb89f6fd8cb: fix(form): Set default value for form fields (#4047) (@ahmadSaeedGoda)

626d55b0c02937645c21774cacc021713de88604: fix(gin): Do not panic when handling method not allowed on empty tree (#4003) (@phsym)

7d147928ee232fce156ea7ce8ae6329e148aeb41: fix(gin): data race warning for gin mode (#1580) (@kplachkov)

c677ccc40a60386565dd0d755efacb85d153feca: fix(go): invalid Go toolchain version (#3961) (@thinkerou)

3319038418656a268c889393cb2dd4224c4469ec: fix(readme): fix broken link to English documentation (#4222) (@eduardo-ax)

674522db91d637d179c16c372d87756ea26fa089: fix(time): binding time with empty value (#4103) (@ksw2000)

ea53388e6ee4a6a0a1647b390c56eeed780e7e56: fix(tree): Keep panic infos consistent when wildcard type build faild (#4077) (@kingcanfish)

8763f33c65f7df8be5b9fe7504ab7fcf20abb41d: fix: prevent middleware re-entry issue in HandleContext (#3987) (@bound2)

7a1b655074c313f9491c83bb8ea164cdc4a9afe9: fix: sonic on arm64 (#4234) (@yashgorana)

5826722a87cf5855fcc4b794cbef11612352771d: fix: version number discrepancy (#4299) (@suwakei)

Enhancements

40725d85badd647870df6f9fa7a75ac76341f804: chore(bind): return 413 status code when error is http.MaxBytesError (#4227) (@ItalyPaleAle)

f875d8728306c2c2c6f504900ab08cd1d8c47f12: chore(context): test context initialization and handler logic (#4087) (@appleboy)

e7693e67c23005743502962d3bb9839a354d6688: chore(deps): bump actions/setup-go from 5 to 6 (#4351) (@dependabot[bot])

afa0c31d97e1b112ccfe7652957f7d8514580c72: chore(deps): bump github.com/gin-contrib/sse from 0.1.0 to 1.1.0 (#4216) (@dependabot[bot])

255af882db4baf0ed6209f1a5471f1663c5d0060: chore(deps): bump github.com/go-playground/validator/v10 (#4208) (@dependabot[bot])

545fd74379a0b167a918e38626ae5f7eb83fb243: chore(deps): bump github.com/go-playground/validator/v10 (#4289) (@dependabot[bot])

c3c8620a7fb4e09c7845feca4e8e8a8678a2685d: chore(deps): bump github.com/go-playground/validator/v10 from 10.20.0 to 10.22.1 (#4052) (@dependabot[bot])

cf32d2dcf8c7534f59727c5e213e45f2412c593a: chore(deps): bump github.com/pelletier/go-toml/v2 from 2.2.2 to 2.2.4 (#4212) (@dependabot[bot])

bb824731032856460aa3ffc23bd90e11bf7d5199: chore(deps): bump github.com/quic-go/quic-go from 0.48.2 to 0.50.1 (#4197) (@dependabot[bot])

61c2b1c28f0c5a754330545e31f02cd6d6f7944e: chore(deps): bump github.com/quic-go/quic-go from 0.51.0 to 0.52.0 (#4250) (@dependabot[bot])

b7d6308bcc84066df79a047ae363a6120fe87808: chore(deps): bump github.com/quic-go/quic-go from 0.52.0 to 0.53.0 (#4281) (@dependabot[bot])

077a2f39c85700ba0823f85ed29cec0c8f2cbdfc: chore(deps): bump github.com/quic-go/quic-go from 0.53.0 to 0.54.0 (#4328) (@dependabot[bot])

46150257b3eec60e3e0bf1cee7c03439099aef83: chore(deps): bump github.com/stretchr/testify from 1.10.0 to 1.11.1 (#4347) (@dependabot[bot])

a6287825c95821a378a34f8a5c9139ea1f6ebd96: chore(deps): bump github.com/ugorji/go/codec from 1.2.12 to 1.3.0 (#4268) (@dependabot[bot])

cc4e11438cd6c0bcc632fe3492d3817dfa21c337: chore(deps): bump golang.org/x/net from 0.25.0 to 0.27.0 (#4013) (@dependabot[bot])

... (truncated)

Changelog

Sourced from github.com/gin-gonic/gin's changelog.

Gin v1.11.0

Features

feat(gin): Experimental support for HTTP/3 using quic-go/quic-go (#3210)

feat(form): add array collection format in form binding (#3986), add custom string slice for form tag unmarshal (#3970)

feat(binding): add BindPlain (#3904)

feat(fs): Export, test and document OnlyFilesFS (#3939)

feat(binding): add support for unixMilli and unixMicro (#4190)

feat(form): Support default values for collections in form binding (#4048)

feat(context): GetXxx added support for more go native types (#3633)

Enhancements

perf(context): optimize getMapFromFormData performance (#4339)

refactor(tree): replace string(/) with "/" in node.insertChild (#4354)

refactor(render): remove headers parameter from writeHeader (#4353)

refactor(context): simplify "GetType()" functions (#4080)

refactor(slice): simplify SliceValidationError Error method (#3910)

refactor(context):Avoid using filepath.Dir twice in SaveUploadedFile (#4181)

refactor(context): refactor context handling and improve test robustness (#4066)

refactor(binding): use strings.Cut to replace strings.Index (#3522)

refactor(context): add an optional permission parameter to SaveUploadedFile (#4068)

refactor(context): verify URL is Non-nil in initQueryCache() (#3969)

refactor(context): YAML judgment logic in Negotiate (#3966)

tree: replace the self-defined 'min' to official one (#3975)

context: Remove redundant filepath.Dir usage (#4181)

Bug Fixes

fix: prevent middleware re-entry issue in HandleContext (#3987)

fix(binding): prevent duplicate decoding and add validation in decodeToml (#4193)

fix(gin): Do not panic when handling method not allowed on empty tree (#4003)

fix(gin): data race warning for gin mode (#1580)

fix(context): verify URL is Non-nil in initQueryCache() (#3969)

fix(context): YAML judgment logic in Negotiate (#3966)

fix(context): check handler is nil (#3413)

fix(readme): fix broken link to English documentation (#4222)

fix(tree): Keep panic infos consistent when wildcard type build faild (#4077)

Build process updates / CI

ci: integrate Trivy vulnerability scanning into CI workflow (#4359)

ci: support Go 1.25 in CI/CD (#4341)

build(deps): upgrade github.com/bytedance/sonic from v1.13.2 to v1.14.0 (#4342)

ci: add Go version 1.24 to GitHub Actions (#4154)

build: update Gin minimum Go version to 1.21 (#3960)

ci(lint): enable new linters (testifylint, usestdlibvars, perfsprint, etc.) (#4010, #4091, #4090)

ci(lint): update workflows and improve test request consistency (#4126)

... (truncated)

Commits

6ad6205 docs(changelog): upgrade Gin to v1.11.0 and add release notes (#4361)
7858527 docs(changelog): update release notes for Gin v1.10.1 (#4360)
cb000f5 ci: integrate Trivy vulnerability scanning into CI workflow (#4359)
2119046 ci: support Go 1.25 (#4341)
da372fc build(deps): upgrade github.com/bytedance/sonic from v1.13.2 to v1.14.0 (#4342)
e198f6e refactor(render): remove headers parameter from writeHeader (#4353)
cca98d2 chore(deps): bump google.golang.org/protobuf from 1.36.8 to 1.36.9 (#4356)
9b1e353 refactor(tree): replace string(/) with "/" in node.insertChild (#4354)
f9bd00a perf(context): optimize getMapFromFormData performance (#4339)
28172fa chore(deps): bump google.golang.org/protobuf from 1.36.6 to 1.36.8 (#4346)
Additional commits viewable in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.2.2 to 5.3.0

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.3.0

This release is almost identical to to v5.2.3 but now correctly indicates Go 1.21 as minimum requirement.

What's Changed

Create CODEOWNERS by @oxisto in golang-jwt/jwt#449

Bump Go version to indicate correct minimum requirement by @oxisto in golang-jwt/jwt#452

Full Changelog: golang-jwt/jwt@v5.2.3...v5.3.0

v5.2.3

What's Changed

Bump GitHub workflows and Go versions by @mfridman in golang-jwt/jwt#438

Implementing validation of multiple audiences by @oxisto in golang-jwt/jwt#433

Bump golangci/golangci-lint-action from 7 to 8 by @dependabot[bot] in golang-jwt/jwt#440

replaced interface{} to any by @aachex in golang-jwt/jwt#445

Fix bug in validation of multiple audiences by @sfinnman-cotn in golang-jwt/jwt#441

New Contributors

@aachex made their first contribution in golang-jwt/jwt#445

@sfinnman-cotn made their first contribution in golang-jwt/jwt#441

Full Changelog: golang-jwt/jwt@v5.2.2...v5.2.3

Commits

e9547a1 Bump Go version to indicate correct minimum requirement (#452)
3839817 Create CODEOWNERS (#449)
d83e545 Fix bug in validation of multiple audiences (#441)
75740f1 replaced interface{} to any (#445)
048854f Bump golangci/golangci-lint-action from 7 to 8 (#440)
497a38e Implementing validation of multiple audiences (#433)
12384ea Bump GitHub workflows and Go versions (#438)
See full diff in compare view

Updates github.com/jarcoal/httpmock from 1.4.0 to 1.4.1

Release notes

Sourced from github.com/jarcoal/httpmock's releases.

v1.4.1

What's Changed

test: also test with go v1.25 and use golangci-lint v2.4.0 by @maxatome in jarcoal/httpmock#164

Avoid data race when closing body by @DavyJohnes in jarcoal/httpmock#165

New Contributors

@DavyJohnes made his first contribution in jarcoal/httpmock#165

Full Changelog: jarcoal/httpmock@v1.4.0...v1.4.1

Commits

314d58a fix: protect all body-related methods with mutext
e482896 fix: avoid data race when closing body
c977145 test: also test with go v1.25 and use golangci-lint v2.4.0
See full diff in compare view

Updates github.com/samber/lo from 1.51.0 to 1.52.0

Release notes

Sourced from github.com/samber/lo's releases.

v1.52.0

Thrilled to announce the latest release of samber/lo!

This version brings major improvements:

A new it/ sub-package for everything related to the iter package added in Go 1.23. Big up to @NathanBaulch for its help on this

A new documentation -> lo.samber.dev

Lots of micro fixes and performance improvements

Better code quality with many more linters

✨ A good introduction to streams in Go !

What's Changed

fix(chunk): Copy chunk in a new slice by @samber in samber/lo#648

fix(zipx): fix the max length calculation by @samber in samber/lo#649

fix(retry): fix potential race condition in debounce callback by @samber in samber/lo#650

feature: add Mode function with tests and documentation by @ghosx in samber/lo#644

add FilterKeys for map by @rasha108bik in samber/lo#631

feat: adding FilterValues and fix FilterKeys signature by @samber in samber/lo#661 samber/lo#662

fix: more consistent panic strings by @NathanBaulch in samber/lo#678

fix: minor example issues by @NathanBaulch in samber/lo#676

feat: preserve type alias in DropByIndex and WithoutBy by @NathanBaulch in samber/lo#675

feat: adding hassuffix + hasprefix by @samber in samber/lo#680

Added Cut, CutPrefix, CutSuffix by @xelavopelk in samber/lo#666

Add TrimXXX helpers by @samber in samber/lo#683

fix(string): fix division by zero by @samber in samber/lo#684

fix: avoid recover() if possible by @NathanBaulch in samber/lo#685

fix: panic when passing -1 to Drop by @NathanBaulch in samber/lo#688

perf: avoid Keyify twice in Trim by @NathanBaulch in samber/lo#689

feat: new iter package by @NathanBaulch in samber/lo#672

feat: from slice to map with index passed by @mabrarov in samber/lo#697

feat: from slice/iterator to map with index passed by @mabrarov in samber/lo#698

feat(generator): deprecate lo.Generator in favor of go "iter" package by @samber in samber/lo#700

perf: optimization of map access by @mabrarov in samber/lo#692

perf: optimize map access everywhere by @NathanBaulch in samber/lo#693

Tests

fix(tests): fix flaky time-based tests by @samber in samber/lo#699

Style

lint: unit test improvements by @NathanBaulch in samber/lo#674

lint: fix CI warnings and avoid named return parameters by @NathanBaulch in samber/lo#682

lint: enable 7 more linters by @NathanBaulch in samber/lo#686

lint: enable gofumpt extra rules by @NathanBaulch in samber/lo#690

Style/rename internal rand by @samber in samber/lo#701

lint: Apply testifylint linter recommendations by @NathanBaulch in samber/lo#669

Style add golangci config by @samber in samber/lo#670

chore: minor whitespace fixes by @NathanBaulch in samber/lo#677

... (truncated)

Commits

a25c42d bump v1.52.0
15ac624 docs: adding go playground examples to it/ package (#708)
c7e9459 docs: lots of various doc improvements (#706)
fa2d724 doc: add it/mutable/parallel sub-package to llms.txt (#707)
aa3a48d fix(doc): add missing "contributing" entry in the menu
5def06d fix(doc): various hot fixes
f9a57ef chore(deps-dev): bump typescript from 5.6.3 to 5.9.3 in /docs (#704)
8b8aa28 fix(doc): make "iter" package visible in doc sidebar
39e418f doc: adding a "contributing" page
1b3cb42 fix(doc): improve algolia search
Additional commits viewable in compare view

Updates github.com/stretchr/testify from 1.10.0 to 1.11.1

Release notes

Sourced from github.com/stretchr/testify's releases.

v1.11.1

This release fixes #1785 introduced in v1.11.0 where expected argument values implementing the stringer interface (String() string) with a method which mutates their value, when passed to mock.Mock.On (m.On("Method", <expected>).Return()) or actual argument values passed to mock.Mock.Called may no longer match one another where they previously did match. The behaviour prior to v1.11.0 where the stringer is always called is restored. Future testify releases may not call the stringer method at all in this case.

What's Changed

Backport #1786 to release/1.11: mock: revert to pre-v1.11.0 argument matching behavior for mutating stringers by @brackendawson in stretchr/testify#1788

Full Changelog: stretchr/testify@v1.11.0...v1.11.1

v1.11.0

What's Changed

Functional Changes

v1.11.0 Includes a number of performance improvements.

Call stack perf change for CallerInfo by @mikeauclair in stretchr/testify#1614

Lazily render mock diff output on successful match by @mikeauclair in stretchr/testify#1615

assert: check early in Eventually, EventuallyWithT, and Never by @cszczepaniak in stretchr/testify#1427

assert: add IsNotType by @bartventer in stretchr/testify#1730

assert.JSONEq: shortcut if same strings by @dolmen in stretchr/testify#1754

assert.YAMLEq: shortcut if same strings by @dolmen in stretchr/testify#1755

assert: faster and simpler isEmpty using reflect.Value.IsZero by @dolmen in stretchr/testify#1761

suite: faster methods filtering (internal refactor) by @dolmen in stretchr/testify#1758

Fixes

assert.ErrorAs: log target type by @craig65535 in stretchr/testify#1345

Fix failure message formatting for Positive and Negative asserts in stretchr/testify#1062

Improve ErrorIs message when error is nil but an error was expected by @tsioftas in stretchr/testify#1681

fix Subset/NotSubset when calling with mixed input types by @siliconbrain in stretchr/testify#1729

Improve ErrorAs failure message when error is nil by @ccoVeille in stretchr/testify#1734

mock.AssertNumberOfCalls: improve error msg by @3scalation in stretchr/testify#1743

Documentation, Build & CI

docs: Fix typo in README by @alexandear in stretchr/testify#1688

Replace deprecated io/ioutil with io and os by @alexandear in stretchr/testify#1684

Document consequences of calling t.FailNow() by @greg0ire in stretchr/testify#1710

chore: update docs for Unset #1621 by @techfg in stretchr/testify#1709

README: apply gofmt to examples by @alexandear in stretchr/testify#1687

refactor: use %q and %T to simplify fmt.Sprintf by @alexandear in stretchr/testify#1674

Propose Christophe Colombier (ccoVeille) as approver by @brackendawson in stretchr/testify#1716

Update documentation for the Error function in assert or require package by @architagr in stretchr/testify#1675

assert: remove deprecated build constraints by @alexandear in stretchr/testify#1671

assert: apply gofumpt to internal test suite by @ccoVeille in stretchr/testify#1739

CI: fix shebang in .ci.*.sh scripts by @dolmen in stretchr/testify#1746

assert,require: enable parallel testing on (almost) all top tests by @dolmen in stretchr/testify#1747

suite.Passed: add one more status test report by @Ararsa-Derese in stretchr/testify#1706

Add Helper() method in internal mocks and assert.CollectT by @dolmen in stretchr/testify#1423

assert.Same/NotSame: improve usage of Sprintf by @ccoVeille in stretchr/testify#1742

mock: enable parallel testing on internal testsuite by @dolmen in stretchr/testify#1756

suite: cleanup use of 'testing' internals at runtime by @dolmen in stretchr/testify#1751

assert: check test failure message for Empty and NotEmpty by @ccoVeille in stretchr/testify#1745

... (truncated)

Commits

2a57335 Merge pull request #1788 from brackendawson/1785-backport-1.11
af8c912 Backport #1786 to release/1.11
b7801fb Merge pull request #1778 from stretchr/dependabot/github_actions/actions/chec...
69831f3 build(deps): bump actions/checkout from 4 to 5
a53be35 Improve captureTestingT helper
aafb604 mock: improve formatting of error message
7218e03 improve error msg
929a212 Merge pull request #1758 from stretchr/dolmen/suite-faster-method-filtering
bc7459e suite: faster filtering of methods (-testify.m)
7d37b5c suite: refactor methodFilter
Additional commits viewable in compare view

Updates github.com/bytedance/sonic from 1.13.3 to 1.14.0

Release notes

Sourced from github.com/bytedance/sonic's releases.

v1.14.0

What's Changed

fix: trim the trailing whitespace for raw json value by @liuq19 in bytedance/sonic#806

feat: support go1.25 by @AsterDY in bytedance/sonic#808

fix: check trailing space for 'native.SkipOneFast' by @AsterDY in bytedance/sonic#812

Full Changelog: bytedance/sonic@v1.13.3...v1.14.0

v1.14.0-rc1

What's Changed

fix: trim the trailing whitespace for raw json value by @liuq19 in bytedance/sonic#806

feat: support go1.25 by @AsterDY in bytedance/sonic#808

Full Changelog: bytedance/sonic@v1.13.3...v1.14.0-rc1

Commits

f51fac7 fix: check trailing space for 'native.SkipOneFast' (#812)
de4f017 feat: support go1.25 (#808)
9dc0088 fix: trim the trailing whitespace for raw json value (#806)
See full diff in compare view

Updates github.com/bytedance/sonic/loader from 0.3.0 to 0.4.0

Commits

438eca4 chore: pcsp for jit functions (#877)
045dce4 style(internal/rt): fix a typo in filename (#871)
a71350b chore: update arm asm (#873)
cdd9739 fix: pcsp for jit functions (#868)
72bd4ca feature: use pool for EscapeHTML (#866)
48ba40b fix: make validate skip behave more similarly like encoding/json (#815)
d55adc4 fix:(decoder) not panic when map key is a interface (#861)
2eeb744 fix: make encoder pretouch able to recurse (#856)
53b981b feat: show JSON trace when panic (#848)
908af5d fix: compilation error with GOEXPERIMENT=jsonv2 (#847)
Additional commits viewable in compare view

Updates github.com/cloudwego/base64x from 0.1.5 to 0.1.6

Release notes

Sourced from github.com/cloudwego/base64x's releases.

v0.1.6

What's Changed

fix: license checker and test in different go versions by @liuq19 in cloudwego/base64x#12

chore: upgrade sonic/loader to v0.3.0 by @liuq19 in cloudwego/base64x#13

Full Changelog: cloudwego/base64x@v0.1.5...v0.1.6

Commits

b1a6643 chore: upgrade sonic/loader to v0.3.0 (#13)
5e89223 fix: license checker and test in different go versions (#12)
See full diff in compare view

Updates github.com/gabriel-vasile/mimetype from 1.4.9 to 1.4.11

Release notes

Sourced from github.com/gabriel-vasile/mimetype's releases.

v1.4.11 cpio, wordperfect support

What's Changed

wordperfect: add support in gabriel-vasile/mimetype#707

cpio: add support for binary version in gabriel-vasile/mimetype#709

shebang: fix detection with args by @scop in gabriel-vasile/mimetype#710

shebang: support env -S by @scop in gabriel-vasile/mimetype#712

dxf: add support in gabriel-vasile/mimetype#720

clone: stop cloning MIME when there is no charset in gabriel-vasile/mimetype#722

aaf: remove individual node for aaf in gabriel-vasile/mimetype#724

msoxml: match files and directories for first zip entry in gabriel-vasile/mimetype#729

Full Changelog: gabriel-vasile/mimetype@v1.4.10...v1.4.11

v1.4.10 perfomance inprovements, tests and new formats

This release adds support for XHTML, Lotus-1-2-3, KML, shell scripts, VSDX, OneNote, CHM and Netpbm file formats. Changes were made to make mimetype behave more file linux $ file --mime utility.

https://github.com/gabriel-vasile/mimetype_tests repo is now used for running comparisons between mimetype and $ file --mime. It contains 50 000 samples and mimetype identifies the same format as $ file --mime for ~97% of them. Results are in the Actions tab.

What's Changed

charset: remove dependency on x/net for parsing html in gabriel-vasile/mimetype#669

CSV: replace stdlib reader with a parser that allocates less in gabriel-vasile/mimetype#672

svg: make detection harder in gabriel-vasile/mimetype#674

pdf: relax check to match file in gabriel-vasile/mimetype#677

csv: stop mutating input byte slices; for #680 in gabriel-vasile/mimetype#681

charset: remove dependency on mime in gabriel-vasile/mimetype#684

mso_office: increase limit of checked entries from 4 to 100 in gabriel-vasile/mimetype#685

jar: replace application/jar with application/java-archive in gabriel-vasile/mimetype#686

Zip container improvements in gabriel-vasile/mimetype#687

Jar first entry inside a zip in gabriel-vasile/mimetype#688

svg+html: better handling for comments in gabriel-vasile/mimetype#689

xhtml: add support in gabriel-vasile/mimetype#690

misc: behave more like file in gabriel-vasile/mimetype#691

lotus-1-2-3: add support in gabriel-vasile/mimetype#695

Add support for zipped KML files by @dmlambea in gabriel-vasile/mimetype#693

shell: add support by @scop in gabriel-vasile/mimetype#694

ruby: add support by @scop in gabriel-vasile/mimetype#700

python: associate with python2 and python3 shebangs by @scop in gabriel-vasile/mimetype#699

vsdx: add support in gabriel-vasile/mimetype#702

oneNote: add support in gabriel-vasile/mimetype#703

chm: add support for Microsoft Compiled HTML Help in gabriel-vasile/mimetype#704

Netpbm: add support by @kenshaw in gabriel-vasile/mimetype#705

New Contributors

@dmlambea made their first contribution in gabriel-vasile/mimetype#693

@scop made their first contribution in gabriel-vasile/mimetype#694

@kenshaw made their first contribution in gabriel-vasile/mimetype#705

... (truncated)

Commits

9914830 msoxml: match files and directories for first zip entry
5ec1912 json: prevent one alloc by re-using the same slice (#726)
7cfd614 performance: use regular funcs instead of var funcs (#670)
71a0f37 aaf: remove individual node for aaf
d0ad103 supported_mimes: fix lint and make test short
fa141bd supported_mimes: add .git-blame-ignore-revs
16a062b supported_mimes: add hierarchy to table
49f3862 clone: stop cloning MIME when there is no charset
d0a95af dxf: add support; closes #719
54d3513 markup: fix for duplicate branch warning from linter
Additional commits viewable in compare view

Updates github.com/go-playground/validator/v10 from 10.27.0 to 10.28.0

Release notes

Sourced from github.com/go-playground/validator/v10's releases.

Release 10.28.0

What's Changed

Update workflow.yml to support 2 most recent major versions by @nodivbyzero in go-playground/validator#1417

Bump actions/checkout from 4 to 5 by

Bumps the dev-dependencies group with 10 updates in the / directory: | Package | From | To | | --- | --- | --- | | [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) | `1.10.1` | `1.11.0` | | [github.com/golang-jwt/jwt/v5](https://github.com/golang-jwt/jwt) | `5.2.2` | `5.3.0` | | [github.com/jarcoal/httpmock](https://github.com/jarcoal/httpmock) | `1.4.0` | `1.4.1` | | [github.com/samber/lo](https://github.com/samber/lo) | `1.51.0` | `1.52.0` | | [github.com/bytedance/sonic/loader](https://github.com/bytedance/sonic) | `0.3.0` | `0.4.0` | | [github.com/gabriel-vasile/mimetype](https://github.com/gabriel-vasile/mimetype) | `1.4.9` | `1.4.11` | | [github.com/go-playground/validator/v10](https://github.com/go-playground/validator) | `10.27.0` | `10.28.0` | | [github.com/go-resty/resty/v2](https://github.com/go-resty/resty) | `2.16.5` | `2.17.0` | | [github.com/stretchr/objx](https://github.com/stretchr/objx) | `0.5.2` | `0.5.3` | | [github.com/ugorji/go/codec](https://github.com/ugorji/go) | `1.3.0` | `1.3.1` | Updates `github.com/gin-gonic/gin` from 1.10.1 to 1.11.0 - [Release notes](https://github.com/gin-gonic/gin/releases) - [Changelog](https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md) - [Commits](gin-gonic/gin@v1.10.1...v1.11.0) Updates `github.com/golang-jwt/jwt/v5` from 5.2.2 to 5.3.0 - [Release notes](https://github.com/golang-jwt/jwt/releases) - [Changelog](https://github.com/golang-jwt/jwt/blob/main/VERSION_HISTORY.md) - [Commits](golang-jwt/jwt@v5.2.2...v5.3.0) Updates `github.com/jarcoal/httpmock` from 1.4.0 to 1.4.1 - [Release notes](https://github.com/jarcoal/httpmock/releases) - [Commits](jarcoal/httpmock@v1.4.0...v1.4.1) Updates `github.com/samber/lo` from 1.51.0 to 1.52.0 - [Release notes](https://github.com/samber/lo/releases) - [Commits](samber/lo@v1.51.0...v1.52.0) Updates `github.com/stretchr/testify` from 1.10.0 to 1.11.1 - [Release notes](https://github.com/stretchr/testify/releases) - [Commits](stretchr/testify@v1.10.0...v1.11.1) Updates `github.com/bytedance/sonic` from 1.13.3 to 1.14.0 - [Release notes](https://github.com/bytedance/sonic/releases) - [Commits](bytedance/sonic@v1.13.3...v1.14.0) Updates `github.com/bytedance/sonic/loader` from 0.3.0 to 0.4.0 - [Release notes](https://github.com/bytedance/sonic/releases) - [Commits](bytedance/sonic@loader/v0.3.0...loader/v0.4.0) Updates `github.com/cloudwego/base64x` from 0.1.5 to 0.1.6 - [Release notes](https://github.com/cloudwego/base64x/releases) - [Commits](cloudwego/base64x@v0.1.5...v0.1.6) Updates `github.com/gabriel-vasile/mimetype` from 1.4.9 to 1.4.11 - [Release notes](https://github.com/gabriel-vasile/mimetype/releases) - [Commits](gabriel-vasile/mimetype@v1.4.9...v1.4.11) Updates `github.com/go-playground/validator/v10` from 10.27.0 to 10.28.0 - [Release notes](https://github.com/go-playground/validator/releases) - [Commits](go-playground/validator@v10.27.0...v10.28.0) Updates `github.com/go-resty/resty/v2` from 2.16.5 to 2.17.0 - [Release notes](https://github.com/go-resty/resty/releases) - [Commits](go-resty/resty@v2.16.5...v2.17.0) Updates `github.com/klauspost/cpuid/v2` from 2.2.11 to 2.3.0 - [Release notes](https://github.com/klauspost/cpuid/releases) - [Changelog](https://github.com/klauspost/cpuid/blob/master/.goreleaser.yml) - [Commits](klauspost/cpuid@v2.2.11...v2.3.0) Updates `github.com/stretchr/objx` from 0.5.2 to 0.5.3 - [Release notes](https://github.com/stretchr/objx/releases) - [Commits](stretchr/objx@v0.5.2...v0.5.3) Updates `github.com/ugorji/go/codec` from 1.3.0 to 1.3.1 - [Release notes](https://github.com/ugorji/go/releases) - [Commits](ugorji/go@codec/v1.3.0...codec/v1.3.1) Updates `golang.org/x/arch` from 0.19.0 to 0.20.0 - [Commits](golang/arch@v0.19.0...v0.20.0) Updates `golang.org/x/crypto` from 0.40.0 to 0.42.0 - [Commits](golang/crypto@v0.40.0...v0.42.0) Updates `golang.org/x/net` from 0.41.0 to 0.43.0 - [Commits](golang/net@v0.41.0...v0.43.0) Updates `golang.org/x/sys` from 0.34.0 to 0.36.0 - [Commits](golang/sys@v0.34.0...v0.36.0) Updates `golang.org/x/text` from 0.27.0 to 0.29.0 - [Release notes](https://github.com/golang/text/releases) - [Commits](golang/text@v0.27.0...v0.29.0) Updates `google.golang.org/protobuf` from 1.36.6 to 1.36.9 --- updated-dependencies: - dependency-name: github.com/gin-gonic/gin dependency-version: 1.11.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/golang-jwt/jwt/v5 dependency-version: 5.3.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/jarcoal/httpmock dependency-version: 1.4.1 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: github.com/samber/lo dependency-version: 1.52.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/stretchr/testify dependency-version: 1.11.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/bytedance/sonic dependency-version: 1.14.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/bytedance/sonic/loader dependency-version: 0.4.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/cloudwego/base64x dependency-version: 0.1.6 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: github.com/gabriel-vasile/mimetype dependency-version: 1.4.11 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: github.com/go-playground/validator/v10 dependency-version: 10.28.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/go-resty/resty/v2 dependency-version: 2.17.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/klauspost/cpuid/v2 dependency-version: 2.3.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: github.com/stretchr/objx dependency-version: 0.5.3 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: github.com/ugorji/go/codec dependency-version: 1.3.1 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dev-dependencies - dependency-name: golang.org/x/arch dependency-version: 0.20.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: golang.org/x/crypto dependency-version: 0.42.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: golang.org/x/net dependency-version: 0.43.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: golang.org/x/sys dependency-version: 0.36.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: golang.org/x/text dependency-version: 0.29.0 dependency-type: indirect update-type: version-update:semver-minor dependency-group: dev-dependencies - dependency-name: google.golang.org/protobuf dependency-version: 1.36.9 dependency-type: indirect update-type: version-update:semver-patch dependency-group: dev-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>

greenbonebot · 2025-11-24T04:05:44Z

Scanning the following files:

go.mod
go.sum

Scan: 'go.mod'

Nothing detected in go.mod
Scan took 0.00 seconds

Scan: 'go.sum'

Nothing detected in go.sum
Scan took 0.00 seconds

github-actions · 2025-11-24T04:05:56Z

Conventional Commits Report

😢 No conventional commits found.

👉 Learn more about the conventional commits usage at Greenbone.

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 24, 2025

dependabot bot requested a review from a team as a code owner November 24, 2025 04:05

dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update Go code labels Nov 24, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the dev-dependencies group across 1 directory with 20 updates #253

Bump the dev-dependencies group across 1 directory with 20 updates #253

Uh oh!

dependabot bot commented on behalf of github Nov 24, 2025

Uh oh!

greenbonebot commented Nov 24, 2025

Uh oh!

github-actions bot commented Nov 24, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

Bump the dev-dependencies group across 1 directory with 20 updates #253

Are you sure you want to change the base?

Bump the dev-dependencies group across 1 directory with 20 updates #253

Uh oh!

Conversation

dependabot bot commented on behalf of github Nov 24, 2025

v1.11.0

Changelog

Features

Bug fixes

Enhancements

Gin v1.11.0

Features

Enhancements

Bug Fixes

Build process updates / CI

v5.3.0

What's Changed

v5.2.3

What's Changed

New Contributors

v1.4.1

What's Changed

New Contributors

v1.52.0

What's Changed

Tests

Style

v1.11.1

What's Changed

v1.11.0

What's Changed

Functional Changes

Fixes

Documentation, Build & CI

v1.14.0

What's Changed

v1.14.0-rc1

What's Changed

v0.1.6

What's Changed

v1.4.11 cpio, wordperfect support

What's Changed

v1.4.10 perfomance inprovements, tests and new formats

What's Changed

New Contributors

Release 10.28.0

What's Changed

Uh oh!

greenbonebot commented Nov 24, 2025

Scanning the following files:

Scan: 'go.mod'

Scan: 'go.sum'

Uh oh!

github-actions bot commented Nov 24, 2025

Conventional Commits Report

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants