Skip to content

Consolidate dependabot updates (2026-03-23)#565

Open
wesm wants to merge 5 commits intomainfrom
dependabot-20260323
Open

Consolidate dependabot updates (2026-03-23)#565
wesm wants to merge 5 commits intomainfrom
dependabot-20260323

Conversation

@wesm
Copy link
Collaborator

@wesm wesm commented Mar 24, 2026

Summary

🤖 Generated with Claude Code

dependabot bot and others added 5 commits March 23, 2026 22:19
@dependabot @wesm
build(deps): bump cachix/install-nix-action from 31.10.1 to 31.10.2
460707c 
Bumps [cachix/install-nix-action](https://github.com/cachix/install-nix-action) from 31.10.1 to 31.10.2.
- [Release notes](https://github.com/cachix/install-nix-action/releases)
- [Changelog](https://github.com/cachix/install-nix-action/blob/master/RELEASE.md)
- [Commits](cachix/install-nix-action@1ca7d21...51f3067)

---
updated-dependencies:
- dependency-name: cachix/install-nix-action
  dependency-version: 31.10.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @wesm
build(deps): bump codecov/codecov-action from 5.5.2 to 5.5.3
7dd549f 
Bumps [codecov/codecov-action](https://github.com/codecov/codecov-action) from 5.5.2 to 5.5.3.
- [Release notes](https://github.com/codecov/codecov-action/releases)
- [Changelog](https://github.com/codecov/codecov-action/blob/main/CHANGELOG.md)
- [Commits](codecov/codecov-action@671740a...1af5884)

---
updated-dependencies:
- dependency-name: codecov/codecov-action
  dependency-version: 5.5.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @wesm
build(deps): bump modernc.org/sqlite from 1.46.2 to 1.47.0
1d910b0 
Bumps [modernc.org/sqlite](https://gitlab.com/cznic/sqlite) from 1.46.2 to 1.47.0.
- [Changelog](https://gitlab.com/cznic/sqlite/blob/master/CHANGELOG.md)
- [Commits](https://gitlab.com/cznic/sqlite/compare/v1.46.2...v1.47.0)

---
updated-dependencies:
- dependency-name: modernc.org/sqlite
  dependency-version: 1.47.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @wesm
build(deps): bump github.com/jackc/pgx/v5 from 5.8.0 to 5.9.1
a19141a 
Bumps [github.com/jackc/pgx/v5](https://github.com/jackc/pgx) from 5.8.0 to 5.9.1.
- [Changelog](https://github.com/jackc/pgx/blob/master/CHANGELOG.md)
- [Commits](jackc/pgx@v5.8.0...v5.9.1)

---
updated-dependencies:
- dependency-name: github.com/jackc/pgx/v5
  dependency-version: 5.9.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@wesm @claude
Update nix vendorHash for dependency bumps
bc9b668 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@roborev-ci
Copy link

roborev-ci bot commented Mar 24, 2026

roborev: Combined Review (bc9b668)

Synthesis unavailable. Showing individual review outputs.

codex — default (done)

Inspecting the dependency bump diff and the affected manifests to check for compatibility or release-management issues.
No issues found.

Summary: This change only updates pinned CI actions, bumps pgx and modernc.org/sqlite module versions, and refreshes the Nix vendorHash, with no obvious correctness or regression risks visible in the diff.

codex — security (done)

Summary: Reviewed the dependency and CI pin updates in .github/workflows/ci.yml, go.mod, and flake.nix. The diff only bumps existing third-party dependencies and GitHub Actions to newer pinned versions; it does not introduce new input-handling paths, auth decisions, secret material, filesystem access patterns, or expanded workflow permissions. The GitHub Actions remain pinned to full commit SHAs, so the existing supply-chain hardening posture is preserved.

No issues found.

gemini — default (done)

Summary: Bumps GitHub action versions and Go dependencies (pgx, sqlite) along with the corresponding Nix vendorHash.

Review Findings:
No issues found.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@wesm