Skip to content

Bump the go-dependencies group with 4 updates#4

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/go-dependencies-77c2a5beb0
Open

Bump the go-dependencies group with 4 updates#4
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/go_modules/go-dependencies-77c2a5beb0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 21, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the go-dependencies group with 4 updates: github.com/sirupsen/logrus, github.com/spf13/cobra, github.com/trustwallet/go-libs and github.com/trustwallet/go-primitives.

Updates github.com/sirupsen/logrus from 1.9.0 to 1.9.4

Release notes

Sourced from github.com/sirupsen/logrus's releases.

v1.9.4

Notable changes

Full Changelog: sirupsen/logrus@v1.9.3...v1.9.4

v1.9.3

Full Changelog: sirupsen/logrus@v1.9.2...v1.9.3

v1.9.2

Full Changelog: sirupsen/logrus@v1.9.1...v1.9.2

v1.9.1

What's Changed

New Contributors

Full Changelog: sirupsen/logrus@v1.9.0...v1.9.1

Changelog

Sourced from github.com/sirupsen/logrus's changelog.

1.9.4

Fixes:

  • Remove uses of deprecated ioutil package

Features:

  • Add GNU/Hurd support
  • Add WASI wasip1 support

Code quality:

  • Update minimum supported Go version to 1.17
  • Documentation updates

1.9.3

Fixes:

  • Re-apply fix for potential denial of service in logrus.Writer() when logging >64KB single-line payloads without newlines (#1376)
  • Fix panic in Writer

1.9.2

Fixes:

  • Revert Writer DoS fix (#1376) due to regression

1.9.1

Fixes:

  • Fix potential denial of service in logrus.Writer() when logging >64KB single-line payloads without newlines (#1376)
Commits
  • b61f268 Merge pull request #1472 from goldlinker/master
  • 15c29db refactor: replace the deprecated function in the ioutil package
  • cb253f3 Merge pull request #1464 from thaJeztah/touchup_godoc
  • 29b2337 Merge pull request #1468 from thaJeztah/touchup_readme
  • d916819 Merge pull request #1427 from dolmen/fix-testify-usage
  • 135e482 README: small touch-ups
  • 2c5fa36 Merge pull request #1467 from thaJeztah/rm_old_badge
  • 877ecec README: remove travis badge
  • 55cf256 Merge pull request #1393 from jsoref/grammar
  • 21bae50 Merge pull request #1426 from dolmen/testing-fix-use-of-math-rand
  • Additional commits viewable in compare view

Updates github.com/spf13/cobra from 1.7.0 to 1.10.2

Release notes

Sourced from github.com/spf13/cobra's releases.

v1.10.2

🔧 Dependencies

  • chore: Migrate from gopkg.in/yaml.v3 to go.yaml.in/yaml/v3 by @​dims in spf13/cobra#2336 - the gopkg.in/yaml.v3 package has been deprecated for some time: this should significantly cleanup dependency/supply-chains for consumers of spf13/cobra

📈 CI/CD

🔥✍🏼 Docs

🍂 Refactors

🤗 New Contributors

Full Changelog: spf13/cobra@v1.10.1...v1.10.2

Thank you to our amazing contributors!!!!! 🐍 🚀

v1.10.1

🐛 Fix

v1.0.9 of pflags brought back ParseErrorsWhitelist and marked it as deprecated

Full Changelog: spf13/cobra@v1.10.0...v1.10.1

v1.10.0

What's Changed

🚨 Attention!

This version of pflag carried a breaking change: it renamed ParseErrorsWhitelist to ParseErrorsAllowlist which can break builds if both pflag and cobra are dependencies in your project.

  • If you use both pflag and cobra, upgrade pflagto 1.0.8 andcobrato1.10.0`
  • or use the newer, fixed version of pflag v1.0.9 which keeps the deprecated ParseErrorsWhitelist

... (truncated)

Commits

Updates github.com/trustwallet/go-libs from 0.7.3 to 0.9.0

Release notes

Sourced from github.com/trustwallet/go-libs's releases.

metrics: Enhance the http metrics middleware

This pull request includes changes to the middleware/metrics.go and middleware/metrics_test.go files to enhance the metrics middleware by adding status code tracking and updating the corresponding tests. The most important changes include adding status code labels, updating the metrics middleware to record status codes, and modifying the tests to validate the new status code metrics.

Enhancements to metrics middleware:

  • middleware/metrics.go: Added a new label labelStatus to track HTTP status codes and updated the MetricsMiddleware function to include this label in the metrics.
  • middleware/metrics.go: Modified the MetricsMiddleware function to record the status code of each request and include it in the label values.

Updates to tests:

  • middleware/metrics_test.go: Added a new route /404 to simulate a 404 error and updated the test cases to include this new route.
  • middleware/metrics_test.go: Updated the expected metrics to include new keys for client and server errors, and modified the assertions to check for the new status code label.

v0.8.8

No release notes provided.

v0.8.7

What's Changed

Full Changelog: trustwallet/go-libs@v0.8.6...v0.8.7

v0.8.6

What's Changed

Full Changelog: trustwallet/go-libs@v0.8.5...v0.8.6

v0.8.5

What's Changed

Full Changelog: trustwallet/go-libs@v0.8.4...v0.8.5

v0.8.4

What's Changed

Full Changelog: trustwallet/go-libs@v0.8.3...v0.8.4

Scan method in Redis wrapper

No release notes provided.

v0.8.2

What's Changed

... (truncated)

Commits

Updates github.com/trustwallet/go-primitives from 0.1.32 to 0.3.2

Release notes

Sourced from github.com/trustwallet/go-primitives's releases.

v0.3.1

What's Changed

Full Changelog: trustwallet/go-primitives@v0.3.0...v0.3.1

v0.3.0

What's Changed

Full Changelog: trustwallet/go-primitives@v0.2.9...v0.3.0

v0.2.8

What's Changed

Full Changelog: trustwallet/go-primitives@0.2.7...v0.2.8

v0.2.7

What's Changed

New Contributors

Full Changelog: trustwallet/go-primitives@v0.2.6...0.2.7

v0.2.6

What's Changed

New Contributors

Full Changelog: trustwallet/go-primitives@v0.2.5...v0.2.6

v0.2.5

What's Changed

Full Changelog: trustwallet/go-primitives@v0.2.4...v0.2.5

v0.2.4

What's Changed

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the go-dependencies group with 4 updates
c8effb8 
Bumps the go-dependencies group with 4 updates: [github.com/sirupsen/logrus](https://github.com/sirupsen/logrus), [github.com/spf13/cobra](https://github.com/spf13/cobra), [github.com/trustwallet/go-libs](https://github.com/trustwallet/go-libs) and [github.com/trustwallet/go-primitives](https://github.com/trustwallet/go-primitives).


Updates `github.com/sirupsen/logrus` from 1.9.0 to 1.9.4
- [Release notes](https://github.com/sirupsen/logrus/releases)
- [Changelog](https://github.com/sirupsen/logrus/blob/master/CHANGELOG.md)
- [Commits](sirupsen/logrus@v1.9.0...v1.9.4)

Updates `github.com/spf13/cobra` from 1.7.0 to 1.10.2
- [Release notes](https://github.com/spf13/cobra/releases)
- [Commits](spf13/cobra@v1.7.0...v1.10.2)

Updates `github.com/trustwallet/go-libs` from 0.7.3 to 0.9.0
- [Release notes](https://github.com/trustwallet/go-libs/releases)
- [Commits](trustwallet/go-libs@v0.7.3...v0.9.0)

Updates `github.com/trustwallet/go-primitives` from 0.1.32 to 0.3.2
- [Release notes](https://github.com/trustwallet/go-primitives/releases)
- [Commits](trustwallet/go-primitives@v0.1.32...v0.3.2)

---
updated-dependencies:
- dependency-name: github.com/sirupsen/logrus
  dependency-version: 1.9.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: go-dependencies
- dependency-name: github.com/spf13/cobra
  dependency-version: 1.10.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/trustwallet/go-libs
  dependency-version: 0.9.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
- dependency-name: github.com/trustwallet/go-primitives
  dependency-version: 0.3.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: go-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Jun 21, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: dependencies. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants