From b8643b2524b150983b4cd833881e1ecf104aa846 Mon Sep 17 00:00:00 2001
From: Carlos Panato <ctadeu@gmail.com>
Date: Thu, 25 Jun 2026 10:17:42 +0200
Subject: [PATCH] general housekeeping

---
 .github/workflows/actionlint.yaml    | 9 ++++++---
 .github/workflows/build.yaml         | 8 +++++---
 .github/workflows/golangci-lint.yaml | 2 +-
 .github/workflows/zizmor.yaml        | 9 ++++++---
 .golangci.yaml                       | 2 +-
 go.mod                               | 2 +-
 6 files changed, 20 insertions(+), 12 deletions(-)

diff --git a/.github/workflows/actionlint.yaml b/.github/workflows/actionlint.yaml
index ece99b9..2df5b0b 100644
--- a/.github/workflows/actionlint.yaml
+++ b/.github/workflows/actionlint.yaml
@@ -4,13 +4,15 @@
 name: Action Lint
 on:
   pull_request:
-    branches: ['main']
+    branches:
+      - 'main'
     paths:
       - '.github/workflows/**'
       - '.github/actions/**'
 
   push:
-    branches: ['main']
+    branches:
+      - 'main'
     paths:
       - '.github/workflows/**'
       - '.github/actions/**'
@@ -21,8 +23,9 @@ jobs:
   action-lint:
     permissions:
       contents: read # Clone the repository
-    name: Action lint
+
     runs-on: ubuntu-latest
+
     steps:
       - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
         with:
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index fc91610..28c63e4 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -2,16 +2,18 @@ name: ci
 
 on:
   pull_request:
-    branches: ['main']
+    branches:
+      - 'main'
   push:
-    branches: ['main']
+    branches:
+      - 'main'
 
 permissions: {}
 
 jobs:
   build:
-    name: build
     runs-on: ubuntu-latest
+
     permissions:
       contents: read
 
diff --git a/.github/workflows/golangci-lint.yaml b/.github/workflows/golangci-lint.yaml
index bef045e..2bceeb6 100644
--- a/.github/workflows/golangci-lint.yaml
+++ b/.github/workflows/golangci-lint.yaml
@@ -33,4 +33,4 @@ jobs:
       - name: golangci-lint
         uses: golangci/golangci-lint-action@82606bf257cbaff209d206a39f5134f0cfbfd2ee # v9.2.1
         with:
-          version: v2.11
+          version: v2.12
diff --git a/.github/workflows/zizmor.yaml b/.github/workflows/zizmor.yaml
index 1dfbea1..c5de130 100644
--- a/.github/workflows/zizmor.yaml
+++ b/.github/workflows/zizmor.yaml
@@ -5,14 +5,16 @@ name: Zizmor
 
 on:
   pull_request:
-    branches: ['main']
+    branches:
+      - 'main'
     paths:
       - '.github/workflows/**'
       - '.github/actions/**'
       - '.github/dependabot.yml'
       - '.github/zizmor.yml'
   push:
-    branches: ['main']
+    branches:
+      - 'main'
     paths:
       - '.github/workflows/**'
       - '.github/actions/**'
@@ -23,12 +25,13 @@ permissions: {}
 
 jobs:
   zizmor:
-    name: Zizmor
     runs-on: ubuntu-latest
+
     permissions:
       actions: read # Required by codeql-action/upload-sarif to get workflow run info
       contents: read # Clone the repository
       security-events: write # Upload SARIF results to Code Scanning
+
     steps:
       - uses: step-security/harden-runner@9af89fc71515a100421586dfdb3dc9c984fbf411 # v2.19.4
         with:
diff --git a/.golangci.yaml b/.golangci.yaml
index 936b2c0..4128bfc 100644
--- a/.golangci.yaml
+++ b/.golangci.yaml
@@ -15,7 +15,7 @@ linters:
     - gocyclo
     - goheader
     - gomoddirectives
-    - gomodguard
+    - gomodguard_v2
     - goprintffuncname
     - gosec
     - govet
diff --git a/go.mod b/go.mod
index b411737..77a0e4e 100644
--- a/go.mod
+++ b/go.mod
@@ -1,6 +1,6 @@
 module github.com/chainguard-dev/go-pkgconfig
 
-go 1.20
+go 1.25
 
 require (
 	github.com/ijt/goparsify v0.0.0-20221203142333-3a5276334b8d