Skip to content

chore(deps): bump the minor-and-patch group across 1 directory with 8 updates#70

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/minor-and-patch-54aa56d1f9
Open

chore(deps): bump the minor-and-patch group across 1 directory with 8 updates#70
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/go_modules/minor-and-patch-54aa56d1f9

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 13, 2026
edited
Loading

Bumps the minor-and-patch group with 6 updates in the / directory:

Package From To
github.com/goccy/go-json 0.10.5 0.10.6
github.com/itchyny/gojq 0.12.18 0.12.19
github.com/mattn/go-isatty 0.0.20 0.0.21
github.com/modelcontextprotocol/go-sdk 1.3.1 1.5.0
github.com/xuri/excelize/v2 2.10.0 2.10.1
golang.org/x/crypto 0.48.0 0.50.0

Updates github.com/goccy/go-json from 0.10.5 to 0.10.6

Release notes

Sourced from github.com/goccy/go-json's releases.

0.10.6

What's Changed

New Contributors

Full Changelog: goccy/go-json@v0.10.5...v0.10.6

Commits

Updates github.com/itchyny/gojq from 0.12.18 to 0.12.19

Release notes

Sourced from github.com/itchyny/gojq's releases.

Release v0.12.19

  • fix gsub and sub when the replacement emits multiple values
  • fix fmax, fmin, modf functions against NaN and infinities
  • fix join/1 to use add/0 implementation and handle null separator
  • fix del and delpaths on null to emit null
  • fix arithmetic operations on the minimum integer
  • fix significand function against subnormal numbers
  • fix handling of -- in cli flag parsing for jq compatibility
  • fix flatten/1 to emit error when the depth is NaN
  • fix array slice update to validate index types
  • fix string repetition boundary check to match jq behavior
  • implement splits/2 using match/2 for better jq compatibility
  • implement to_entries and from_entries in jq for simplicity
  • improve performance of regexp functions by caching compiled regexps
Changelog

Sourced from github.com/itchyny/gojq's changelog.

v0.12.19 (2026-04-01)

  • fix gsub and sub when the replacement emits multiple values
  • fix fmax, fmin, modf functions against NaN and infinities
  • fix join/1 to use add/0 implementation and handle null separator
  • fix del and delpaths on null to emit null
  • fix arithmetic operations on the minimum integer
  • fix significand function against subnormal numbers
  • fix handling of -- in cli flag parsing for jq compatibility
  • fix flatten/1 to emit error when the depth is NaN
  • fix array slice update to validate index types
  • fix string repetition boundary check to match jq behavior
  • implement splits/2 using match/2 for better jq compatibility
  • implement to_entries and from_entries in jq for simplicity
  • improve performance of regexp functions by caching compiled regexps
Commits
  • b7ebffb bump up version to 0.12.19
  • b02c97b update CHANGELOG.md for v0.12.19
  • d7ca9b5 implement to_entries and from_entries in jq for simplicity
  • bac8b0b update dependencies
  • 183cbec bump up Docker actions
  • 40707cf fix repeated argument type any
  • b5ece86 fix handling of -- in cli flag parsing for jq compatibility
  • cca2307 re-generate the parser.go file
  • ca5066d fix gsub and sub when the replacement emits multiple values
  • 0878958 improve performance of regexp functions by caching compiled regexps (fix #230)
  • Additional commits viewable in compare view

Updates github.com/mattn/go-isatty from 0.0.20 to 0.0.21

Commits
  • 4237fb1 Update Go test matrix to current versions (1.24-1.26)
  • 433c12b Update GitHub Actions to latest versions
  • 1cf5589 Add wasip1 and wasip2 to build constraints in isatty_others.go
  • 1237245 Update dependencies: go 1.15 -> 1.21, golang.org/x/sys v0.6.0 -> v0.28.0
  • ac9c88d Fix typo in comment: undocomented -> undocumented
  • 8b7124e Add availability check for NtQueryObject in init
  • 08d0313 Fix isCygwinPipeName to reject names with extra trailing tokens
  • See full diff in compare view

Updates github.com/modelcontextprotocol/go-sdk from 1.3.1 to 1.5.0

Release notes

Sourced from github.com/modelcontextprotocol/go-sdk's releases.

v1.5.0

This release is equivalent to v1.5.0-pre.1. Thank you to those who tested the pre-release.

In this release we introduce important enhancements to the client-side OAuth flows. We also introduce several smaller fixes and improvements.

Stabilization of client-side OAuth APIs

As previously communicated, we're stabilizing the client-side OAuth APIs in v1.5.0. This means that the mcp_go_client_oauth build tag will no longer be required to compile the functionality and standard backward compatibility guarantees apply from now on.

Compared to the experimental support published in v1.4.0, we made some backwards incompatible changes:

  • auth.AuthorizationCodeHandlerConfig.AuthorizationCodeFetcher's type was changed from func(context.Context, *auth.AuthorizationArgs) (*auth.AuthorizationResult, error) to auth.AuthorizationCodeFetcher which is a reusable definition carrying the same underlying function type.
  • auth.AuthorizationCodeHandlerConfig.PreregisteredClientConfig was removed and replaced with auth.AuthorizationCodeHandlerConfig.PreregisteredClient which uses a newly introduced oauthex.ClientCredentials type. The type used previously (auth.PreregisteredClientConfig) has been removed.
  • Deprecated functionality has been removed from both auth and oauthex packages.

Enterprise Managed Authorization support added

Support for Enterprise Managed Authorization has been added to auth/extauth package. Huge thanks to @​radar07 for the implementation!

Note: this support is part of an official MCP extension and is not part of the core protocol. The support of this functionality is not covered by the principles defined in SDK tiers.

Other changes to the SDK

... (truncated)

Commits
  • d3fd25b mcp: use http.ResponseController to ensure writes are flushed (#870)
  • 638d404 all: stabilize client OAuth support (#861)
  • c1a12cf mcp: accept parameterized Accept media types (#853)
  • a1f808c all: modernize code (#868)
  • 74d2751 mcp: return input validation errors as tool results, not JSON-RPC errors (#863)
  • b71a839 all: fix typos (#869)
  • 2d43865 Enterprise managed authorization (#770)
  • 05277f6 oauthex: use internal JSON library for decoding. (#866)
  • 150bca7 mcp: handle empty chunks in MemoryEventStore (#862)
  • 755b9ed mcp: re-enable race test after fixing data races (#851)
  • Additional commits viewable in compare view

Updates github.com/xuri/excelize/v2 from 2.10.0 to 2.10.1

Release notes

Sourced from github.com/xuri/excelize/v2's releases.

v2.10.1

We are pleased to announce the release of version 2.10.1. Featured are a handful of new areas of functionality and numerous bug fixes.

A summary of changes is available in the Release Notes. A full list of changes is available in the changelog.

Release Notes

The most notable changes in this release are:

Breaking Change

Removed three exported error variables: ErrStreamSetColStyle, ErrStreamSetColWidth, and ErrStreamSetPanes.

Notable Features

  • Added the ChartDataPoint data type
  • Added the DataPoint field to ChartSeries
  • Added the DropLines and HighLowLines fields to ChartAxis
  • Added the Name field to GraphicOptions
  • Added two constants: MaxGraphicAltTextLength and MaxGraphicNameLength
  • Added 7 exported error variables: ErrFillType, ErrFillGradientColor, ErrFillGradientShading, ErrFillPatternColor, ErrFillPattern, ErrMaxGraphicAltTextLength and ErrMaxGraphicNameLength
  • Added the exported function GetHyperLinkCells to retrieve hyperlink cells, related issue #1607
  • Added the exported function GetSheetProtection to retrieve sheet protection settings
  • The AddComment function now returns an error when adding a comment to a cell that already has one
  • Added support for inserting ICO images, related issue #2234
  • The CalcCellValue function now supports two formula functions: SORTBY and UNIQUE
  • The AddChart and AddChartSheet functions now support setting data point colors for doughnut, pie, and 3D pie charts, related issue #1904
  • The AddChart function now supports configuring font families for East Asian and complex-script fonts
  • The AddChart function now supports drop lines and high-low lines for area and line charts
  • The GetPictures function can now return partial formatting properties, related issue #2157
  • Added the SetColVisible function to the streaming writer to set column visibility, related issue #2075
  • Added the SetColOutlineLevel function to the streaming writer to group columns, related issue #2212
  • The AddShape and AddSlicer functions now support one-cell anchor positioning for shapes and slicers
  • The GetSlicers function now supports retrieving slicers with one-cell anchor positioning
  • The SetConditionalFormat, GetConditionalFormats, and UnsetConditionalFormat functions now support the 3 triangles, 3 stars, and 5 boxes icon set conditional formats, related issue #2038
  • The UnsetConditionalFormat function now supports deleting a conditional format rule or data validation for a specific cell within a cell range
  • The AddPicture and AddPictureFromBytes functions now support setting the picture name
  • The AddChart and AddShape functions now support setting names and alternative text for charts and shapes
  • The AddSlicer function now supports setting alternative text for slicers
  • Added validation for graphic names and alternative text length; returns an error when the length exceeds the limit
  • Added UTF-16-aware length checking and truncation

Improve the Compatibility

  • Removed empty rows on save, reducing the generated workbook file size

Bug Fixes

  • Fixed a v2.10.0 regression where the GetCellValue and GetRows functions returned shared string indexes for empty strings, resolve issue #2240
  • Fixed GetPivotTables panicking when retrieving pivot tables in some cases

... (truncated)

Commits
  • 5ad5ab3 Update GitHub Actions workflow configuration, test on Go 1.26.x (#2262)
  • 52dd99a This closes #2259, add value check for prevent using invalid fill type when c...
  • 4917cff This closes #2254, fixx duplicate style creation when using default font or f...
  • 38eb7c1 Trim single quotes from sheet names to fix calculation engine resolve referen...
  • 2dcfb60 This closes #2240, fix GetCellValue returning shared string index for empty s...
  • f5f68f8 Ref #1607, introduce new functions GetHyperLinkCells and GetSheetProtection
  • 6ad51b2 Support set drop lines and high-low lines for area and line charts (#2250)
  • 37b730a Apply font family settings for east asian and complex script fonts (#2249)
  • 7b57409 Support delete conditional format rule or data validation by specific cell fr...
  • 8b325dc Fix DeleteDataValidation with unordered sqref ranges (#2248)
  • Additional commits viewable in compare view

Updates golang.org/x/crypto from 0.48.0 to 0.50.0

Commits
  • 03ca0dc go.mod: update golang.org/x dependencies
  • 8400f4a ssh: respect signer's algorithm preference in pickSignatureAlgorithm
  • 81c6cb3 ssh: swap cbcMinPaddingSize to cbcMinPacketSize to get encLength
  • 982eaa6 go.mod: update golang.org/x dependencies
  • 159944f ssh,acme: clean up tautological/impossible nil conditions
  • a408498 acme: only require prompt if server has terms of service
  • cab0f71 all: upgrade go directive to at least 1.25.0 [generated]
  • 2f26647 x509roots/fallback: update bundle
  • See full diff in compare view

Updates golang.org/x/sys from 0.41.0 to 0.43.0

Commits
  • f33a730 windows: support nil security descriptor on GetNamedSecurityInfo
  • 493d172 cpu: add runtime import in cpu_darwin_arm64_other.go
  • 2c2be75 windows: use syscall.SyscallN in Proc.Call
  • a76ec62 cpu: roll back "use IsProcessorFeaturePresent to calculate ARM64 on windows"
  • eaaaaee windows/registry: correct KeyInfo.ModTime calculation
  • 942780b cpu: darwin/arm64 feature detection
  • acef388 unix/linux: Prefixmsg and PrefixCacheinfo structs
  • 3687fbd cpu: better defaults on darwin ARM64
  • 48062e9 plan9: change Note to alias syscall.Note
  • 4f23f80 windows: change Signal to alias syscall.Signal
  • Additional commits viewable in compare view

Updates golang.org/x/text from 0.34.0 to 0.36.0

Commits
  • 8577a70 go.mod: update golang.org/x dependencies
  • 7ca2c6d go.mod: update golang.org/x dependencies
  • 73d1ba9 all: upgrade go directive to at least 1.25.0 [generated]
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the minor-and-patch group across 1 directory with 8…
202f7aa 
… updates

Bumps the minor-and-patch group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [github.com/goccy/go-json](https://github.com/goccy/go-json) | `0.10.5` | `0.10.6` |
| [github.com/itchyny/gojq](https://github.com/itchyny/gojq) | `0.12.18` | `0.12.19` |
| [github.com/mattn/go-isatty](https://github.com/mattn/go-isatty) | `0.0.20` | `0.0.21` |
| [github.com/modelcontextprotocol/go-sdk](https://github.com/modelcontextprotocol/go-sdk) | `1.3.1` | `1.5.0` |
| [github.com/xuri/excelize/v2](https://github.com/xuri/excelize) | `2.10.0` | `2.10.1` |
| [golang.org/x/crypto](https://github.com/golang/crypto) | `0.48.0` | `0.50.0` |



Updates `github.com/goccy/go-json` from 0.10.5 to 0.10.6
- [Release notes](https://github.com/goccy/go-json/releases)
- [Changelog](https://github.com/goccy/go-json/blob/master/CHANGELOG.md)
- [Commits](goccy/go-json@v0.10.5...v0.10.6)

Updates `github.com/itchyny/gojq` from 0.12.18 to 0.12.19
- [Release notes](https://github.com/itchyny/gojq/releases)
- [Changelog](https://github.com/itchyny/gojq/blob/main/CHANGELOG.md)
- [Commits](itchyny/gojq@v0.12.18...v0.12.19)

Updates `github.com/mattn/go-isatty` from 0.0.20 to 0.0.21
- [Commits](mattn/go-isatty@v0.0.20...v0.0.21)

Updates `github.com/modelcontextprotocol/go-sdk` from 1.3.1 to 1.5.0
- [Release notes](https://github.com/modelcontextprotocol/go-sdk/releases)
- [Commits](modelcontextprotocol/go-sdk@v1.3.1...v1.5.0)

Updates `github.com/xuri/excelize/v2` from 2.10.0 to 2.10.1
- [Release notes](https://github.com/xuri/excelize/releases)
- [Commits](qax-os/excelize@v2.10.0...v2.10.1)

Updates `golang.org/x/crypto` from 0.48.0 to 0.50.0
- [Commits](golang/crypto@v0.48.0...v0.50.0)

Updates `golang.org/x/sys` from 0.41.0 to 0.43.0
- [Commits](golang/sys@v0.41.0...v0.43.0)

Updates `golang.org/x/text` from 0.34.0 to 0.36.0
- [Release notes](https://github.com/golang/text/releases)
- [Commits](golang/text@v0.34.0...v0.36.0)

---
updated-dependencies:
- dependency-name: github.com/goccy/go-json
  dependency-version: 0.10.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: github.com/itchyny/gojq
  dependency-version: 0.12.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: github.com/mattn/go-isatty
  dependency-version: 0.0.21
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: github.com/modelcontextprotocol/go-sdk
  dependency-version: 1.5.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: github.com/xuri/excelize/v2
  dependency-version: 2.10.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: golang.org/x/crypto
  dependency-version: 0.50.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: golang.org/x/sys
  dependency-version: 0.43.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: golang.org/x/text
  dependency-version: 0.36.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependencies Pull requests that update a dependency file label Apr 13, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants