Skip to content

Bump the default group with 2 updates#63

Merged
mishankov merged 1 commit intomainfrom
dependabot/go_modules/default-4fa527b7a2
Mar 2, 2026
Merged

Bump the default group with 2 updates#63
mishankov merged 1 commit intomainfrom
dependabot/go_modules/default-4fa527b7a2

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Mar 1, 2026
edited
Loading

Bumps the default group with 2 updates: github.com/lib/pq and golang.org/x/crypto.

Updates github.com/lib/pq from 1.11.1 to 1.11.2

Release notes

Sourced from github.com/lib/pq's releases.

v1.11.2

This fixes two regressions:

  • Don't send startup parameters if there is no value, improving compatibility with Supavisor (#1260).

  • Don't send dbname as a startup parameter if database=[..] is used in the connection string. It's recommended to use dbname=, as database= is not a libpq option, and only worked by accident previously. (#1261)

#1260: lib/pq#1260 #1261: lib/pq#1261

Changelog

Sourced from github.com/lib/pq's changelog.

v1.11.2 (2026-02-10)

This fixes two regressions:

  • Don't send startup parameters if there is no value, improving compatibility with Supavisor (#1260).

  • Don't send dbname as a startup parameter if database=[..] is used in the connection string. It's recommended to use dbname=, as database= is not a libpq option, and only worked by accident previously. (#1261)

#1260: lib/pq#1260 #1261: lib/pq#1261

Commits
  • 1412805 Don't send empty startup parameters
  • 0c529db Don't send dbname= as a startup parameter when database= is used
  • See full diff in compare view

Updates golang.org/x/crypto from 0.47.0 to 0.48.0

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels Mar 1, 2026
@mishankov
Copy link
Member

mishankov commented Mar 2, 2026

@dependabot rebase

@dependabot
Bump the default group with 2 updates
c736d15 
Bumps the default group with 2 updates: [github.com/lib/pq](https://github.com/lib/pq) and [golang.org/x/crypto](https://github.com/golang/crypto).


Updates `github.com/lib/pq` from 1.11.1 to 1.11.2
- [Release notes](https://github.com/lib/pq/releases)
- [Changelog](https://github.com/lib/pq/blob/master/CHANGELOG.md)
- [Commits](lib/pq@v1.11.1...v1.11.2)

Updates `golang.org/x/crypto` from 0.47.0 to 0.48.0
- [Commits](golang/crypto@v0.47.0...v0.48.0)

---
updated-dependencies:
- dependency-name: github.com/lib/pq
  dependency-version: 1.11.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: default
- dependency-name: golang.org/x/crypto
  dependency-version: 0.48.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: default
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/go_modules/default-4fa527b7a2 branch from 5ce1fd5 to c736d15 Compare March 2, 2026 04:40
@mishankov mishankov merged commit 7100ba3 into main Mar 2, 2026
6 checks passed
@dependabot dependabot bot deleted the dependabot/go_modules/default-4fa527b7a2 branch March 2, 2026 05:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@mishankov