chore(deps): bump the minor-and-patch group across 1 directory with 73 updates

[dependabot]

Bumps the minor-and-patch group with 40 updates in the / directory:

Package	From	To
github.com/alecthomas/chroma/v2	2.20.0	2.23.1
github.com/flanksource/commons	1.42.3	1.44.1
github.com/flanksource/gomplate/v3	3.24.60	3.24.66
github.com/goccy/go-yaml	1.18.0	1.19.2
github.com/golang-jwt/jwt/v5	5.3.0	5.3.1
github.com/google/cel-go	0.22.1	0.27.0
github.com/itchyny/gojq	0.12.17	0.12.18
github.com/labstack/echo/v4	4.13.4	4.15.0
github.com/mattn/go-sqlite3	1.14.30	1.14.33
github.com/olekukonko/tablewriter	1.1.0	1.1.3
github.com/onsi/ginkgo/v2	2.26.0	2.28.1
github.com/playwright-community/playwright-go	0.4702.0	0.5200.1
github.com/spf13/cobra	1.9.2-0.20250831231508-51d675196729	1.10.2
github.com/xuri/excelize/v2	2.9.1	2.10.0
github.com/cert-manager/cert-manager	1.16.1	1.19.2
github.com/charmbracelet/colorprofile	0.2.3-0.20250311203215-f60798e515dc	0.4.1
github.com/charmbracelet/x/cellbuf	0.0.13-0.20250311204145-2c3ea96c31dd	0.0.14
github.com/flanksource/is-healthy	1.0.79	1.0.82
github.com/go-ole/go-ole	1.2.6	1.3.0
github.com/gosimple/slug	1.13.1	1.15.0
github.com/ohler55/ojg	1.25.0	1.28.0
github.com/olekukonko/errors	1.1.0	1.2.0
github.com/prometheus/common	0.66.1	0.67.5
github.com/prometheus/procfs	0.17.0	0.19.2
github.com/richardlehane/mscfb	1.0.4	1.0.6
github.com/richardlehane/msoleps	1.0.4	1.0.6
github.com/robertkrimen/otto	0.3.0	0.5.1
github.com/samber/oops	1.19.3	1.21.0
github.com/shoenig/go-m1cpu	0.1.6	0.1.7
github.com/sirupsen/logrus	1.9.3	1.9.4
github.com/tidwall/match	1.1.1	1.2.0
github.com/tklauser/go-sysconf	0.3.12	0.3.16
github.com/ugorji/go/codec	1.2.12	1.3.1
go.opentelemetry.io/auto/sdk	1.1.0	1.2.1
go.opentelemetry.io/otel	1.38.0	1.39.0
go.opentelemetry.io/otel/sdk	1.38.0	1.39.0
golang.org/x/image	0.27.0	0.35.0
k8s.io/apimachinery	0.34.1	0.35.0
k8s.io/client-go	0.34.1	0.35.0
sigs.k8s.io/structured-merge-diff/v6	6.3.0	6.3.1

Updates github.com/alecthomas/chroma/v2 from 2.20.0 to 2.23.1

Release notes

Sourced from github.com/alecthomas/chroma/v2's releases.

v2.23.1

Changelog

• 5b4188b fix: remove AGPL licensed testdata
• b9b4edc Add .env.* pattern to bash lexer (#1197)
• f163adc docs: add AGENTS.md
• fe6f0f3 fix: title link to Chroma

v2.23.0

Changelog

• 610afd8 feat: add light/dark mode toggle
• 1b5aad9 fix: make just commands faster
• 84583c6 fix: wait for WASM runtime to become ready at startup
• 1b6f6e7 fix: need relative import for wasm_exec.js
• 2a78195 fix: wasm builds got broken by the last change
• f8a34ec feat: fix local dev so it falls back to server
• 6827057 refactor: migrate to Just
• a60896f Create a lexer for Markless (#1195)

v2.22.0

Changelog

• 467c878 fix: reverse order of --lexer to name, then file
• 649c24d Add KDL lexer (#1192)
• 249a634 Add MoonBit lexer (#1191)
• 3e1f428 Update Zig lexer and example (#1189)
• 31592d5 fix: no text auto-sizing on webkit (#1186)
• 2e611c1 Add APKBUILD as filename to Bash lexer (#1187)
• c1adec8 chore(deps): update all non-major dependencies (#1185)
• 24cc733 fix(styles): update punctuation in Aura Theme to meet style guidelines (#1184)
• b0358e8 Add lexer for microcad (#1171)

v2.21.1

Changelog

• 0fe6941 fix(styles): use kebab-case for style name in Aura Theme variants (#1183)
• 2408917 chore(deps): update all non-major dependencies (#1178)
• b527a28 Update lexer lox (#1175)

v2.21.0

Changelog

• 26a0cc1 feat(styles): add Aura Theme primary variants (#1177)
• fc10487 Fix (D): multiline comments (#1173)
• aec4bfc Add support for Device tree (#1172)
• 8ea696b chore(deps): update actions/checkout action to v6 (#1167)
• a40a9d3 chore(deps): update dependency binaryen to v125 (#1168)
• 5486d21 chore(deps): update all non-major dependencies (#1164)
• 42c2aa1 Add helper script to generate supported langs markdown table (#1170)
• e799618 chore(deps): update actions/checkout digest to 93cb6ef (#1163)
• 6b58845 Add Ashen style (#1169)
• 8b8574c Add Protocol Buffer Text Format Language (txtpb) (#1165)
• c07ef4b chore(deps): update all non-major dependencies (#1160)
• 3b5a164 Add lexer for WebAssembly Text Format (#1161)

... (truncated)

Commits

• 5b4188b fix: remove AGPL licensed testdata
• b9b4edc Add .env.* pattern to bash lexer (#1197)
• f163adc docs: add AGENTS.md
• fe6f0f3 fix: title link to Chroma
• 610afd8 feat: add light/dark mode toggle
• 1b5aad9 fix: make just commands faster
• 84583c6 fix: wait for WASM runtime to become ready at startup
• 1b6f6e7 fix: need relative import for wasm_exec.js
• 2a78195 fix: wasm builds got broken by the last change
• f8a34ec feat: fix local dev so it falls back to server
• Additional commits viewable in compare view

Updates github.com/flanksource/commons from 1.42.3 to 1.44.1

Release notes

Sourced from github.com/flanksource/commons's releases.

v1.44.1

1.44.1 (2026-01-06)

v1.44.0

1.44.0 (2026-01-06)

Features

• timeinterval (#285) (dc65ca1)

v1.43.3

1.43.3 (2026-01-02)

Bug Fixes

• don't error out on --help flag (7d8dbe2)

v1.43.2

1.43.2 (2025-10-30)

v1.43.1

1.43.1 (2025-10-30)

Bug Fixes

• postgrest asset path (#280) (f65e2de)

v1.43.0

1.43.0 (2025-10-23)

Features

• add syncmap (0f55f61)

Commits

• 347389f chore: bump gomplate to v3.24.64 (#286)
• dc65ca1 feat: timeinterval (#285)
• 7d8dbe2 fix: don't error out on --help flag
• 317f859 ci: Harden GitHub Actions
• f31bd5a chore: update bump duty release (#281)
• f65e2de fix: postgrest asset path (#280)
• 0f55f61 feat: add syncmap
• See full diff in compare view

Updates github.com/flanksource/gomplate/v3 from 3.24.60 to 3.24.66

Release notes

Sourced from github.com/flanksource/gomplate/v3's releases.

v3.24.66

3.24.66 (2026-01-15)

v3.24.65

3.24.65 (2026-01-08)

Features

• Business hour cel and gotemplate functions (#139) (861c710)

v3.24.64

3.24.64 (2026-01-06)

v3.24.63

3.24.63 (2026-01-02)

v3.24.62

3.24.62 (2025-12-23)

Bug Fixes

• Add type as a cel keyword (6ad55f1)

v3.24.61

3.24.61 (2025-12-23)

Bug Fixes

• lint errors (#138) (9f9ca5d)

Commits

• 470f9ad chore: add HashUUID function for deterministic UUID generation using SHA256 (...
• 861c710 feat: Business hour cel and gotemplate functions (#139)
• fb95a76 chore: bump commons (#140)
• 2a92fb4 chore: Add paths to ignore in secret scanning
• 6ad55f1 fix: Add type as a cel keyword
• 9f9ca5d fix: lint errors (#138)
• See full diff in compare view

Updates github.com/goccy/go-yaml from 1.18.0 to 1.19.2

Release notes

Sourced from github.com/goccy/go-yaml's releases.

1.19.2

What's Changed

• Fix anchor reference regression in nested structures by @​linyows in goccy/go-yaml#839

New Contributors

• @​linyows made their first contribution in goccy/go-yaml#839

Full Changelog: goccy/go-yaml@v1.19.1...v1.19.2

1.19.1

What's Changed

• Fix decoding of integer keys of map type by @​goccy in goccy/go-yaml#829
• Support line comment for flow sequence or flow map by @​goccy in goccy/go-yaml#834

Full Changelog: goccy/go-yaml@v1.19.0...v1.19.1

1.19.0

What's Changed

• Revert "feat: Dont make copies of structs for validation" by @​shuheiktgw in goccy/go-yaml#763
• Add decode option that allows specific field prefixes by @​cpuguy83 in goccy/go-yaml#795
• Normalize CR and CRLF in multi-line strings by @​shuheiktgw in goccy/go-yaml#754
• Support non string map keys by @​shuheiktgw in goccy/go-yaml#756
• Skip directive in path operations by @​shuheiktgw in goccy/go-yaml#758
• Add indentation to flow values on new lines by @​shuheiktgw in goccy/go-yaml#759
• Add support for RawMessage, similar to json.RawMessage by @​thanethomson in goccy/go-yaml#790

New Contributors

• @​cpuguy83 made their first contribution in goccy/go-yaml#795
• @​thanethomson made their first contribution in goccy/go-yaml#790

Full Changelog: goccy/go-yaml@v1.18.0...v1.19.0

Commits

• 92bc79c Fix anchor reference regression in nested structures (#839)
• b0ab069 Support line comment for flow sequence or flow map (#834)
• 9e98b0c Fix decoding of integer keys of map type (#829)
• a7b4bfb Add support for RawMessage, similar to json.RawMessage (#790)
• 07c09c0 Add indentation to flow values on new lines (#759)
• 0040ab4 Skip directive in path operations (#758)
• 7901e98 Support non string map keys (#756)
• f4d1347 Normalize CR and CRLF in multi-line strings (#754)
• 90e8525 Add decode option that allows specific field prefixes (#795)
• 25e5d90 Revert "feat: Dont make copies of structs for validation (#737)" (#763)
• See full diff in compare view

Updates github.com/golang-jwt/jwt/v5 from 5.3.0 to 5.3.1

Release notes

Sourced from github.com/golang-jwt/jwt/v5's releases.

v5.3.1

What's Changed

🔐 Features

• Add spellcheck Github action to catch common spelling mistakes by @​equalsgibson in golang-jwt/jwt#458
• Add WithNotBeforeRequired parser option and add test coverage by @​equalsgibson in golang-jwt/jwt#456
• Update godoc example func to properly refer to NewWithClaims() by @​equalsgibson in golang-jwt/jwt#459
• Update github workflows by @​mfridman in golang-jwt/jwt#462
• Additional test for CustomClaims that validates unmarshalling behaviour by @​equalsgibson in golang-jwt/jwt#457
• Fix early file close in jwt cli by @​mfridman in golang-jwt/jwt#472
• Add TPM signature reference by @​salrashid123 in golang-jwt/jwt#473
• Remove misleading ParserOptions documentation in golang-jwt/jwt#484
• Save signature to Token struct after successful signing by @​EgorSheff in golang-jwt/jwt#417
• Set token.Signature in ParseUnverified by @​slickwilli in golang-jwt/jwt#414

👒 Dependencies

• Bump crate-ci/typos from 1.34.0 to 1.35.3 by @​dependabot[bot] in golang-jwt/jwt#461
• Bump crate-ci/typos from 1.35.4 to 1.36.2 by @​dependabot[bot] in golang-jwt/jwt#470
• Bump github/codeql-action from 3 to 4 by @​dependabot[bot] in golang-jwt/jwt#478
• Bump crate-ci/typos from 1.36.2 to 1.39.0 by @​dependabot[bot] in golang-jwt/jwt#480
• Bump golangci/golangci-lint-action from 8 to 9 by @​dependabot[bot] in golang-jwt/jwt#481
• Bump actions/setup-go from 5 to 6 by @​dependabot[bot] in golang-jwt/jwt#469
• Bump crate-ci/typos from 1.39.0 to 1.40.0 by @​dependabot[bot] in golang-jwt/jwt#488
• Bump actions/checkout from 5 to 6 by @​dependabot[bot] in golang-jwt/jwt#487
• Bump crate-ci/typos from 1.40.0 to 1.41.0 by @​dependabot[bot] in golang-jwt/jwt#490
• Bump crate-ci/typos from 1.41.0 to 1.42.1 by @​dependabot[bot] in golang-jwt/jwt#492

New Contributors

• @​equalsgibson made their first contribution in golang-jwt/jwt#458
• @​salrashid123 made their first contribution in golang-jwt/jwt#473
• @​EgorSheff made their first contribution in golang-jwt/jwt#417
• @​slickwilli made their first contribution in golang-jwt/jwt#414

Full Changelog: golang-jwt/jwt@v5.3.0...v5.3.1

Commits

• 7ceae61 Add release.yml for changelog configuration
• dce8e4d Set token.Signature in ParseUnverified (#414)
• 8889e20 Save signature to Token struct after successful signing (#417)
• d237f82 ci: update github-actions schedule interval to monthly
• d8dce95 Bump crate-ci/typos from 1.41.0 to 1.42.1 (#492)
• e931803 Bump crate-ci/typos from 1.40.0 to 1.41.0 (#490)
• e6a0afa Bump actions/checkout from 5 to 6 (#487)
• 9f85c9e Bump crate-ci/typos from 1.39.0 to 1.40.0 (#488)
• 60a8669 Bump actions/setup-go from 5 to 6 (#469)
• 76f5828 Remove misleading ParserOptions documentation (#484)
• Additional commits viewable in compare view

Updates github.com/google/cel-go from 0.22.1 to 0.27.0

Release notes

Sourced from github.com/google/cel-go's releases.

Release v0.27.0

Release Summary

This release focuses on improving developer tooling and stability. Key highlights include significant enhancements to the REPL (YAML configuration support and parse-only evaluation), the addition of cost estimation for regex operations, and improved test coverage reporting.

On the stability front, this release addresses race conditions in reference types, improves namespace resolution, and ensures formatting directives align strictly with the CEL specification.

Note: This release includes a breaking change regarding how types are handled as variables. Please review the "Breaking Changes" section below.

⚠ Breaking Changes

Remove types as variables: The logic for handling types has been relaxed to support safe rollout of feature packages which introduce new types whose names may collide with existing variables. Please review your policies if you relied on types behaving strictly as variables in previous versions. [PR #1262](google/cel-go#1262)

Features & Enhancements

REPL & Tooling

• YAML Configuration: The REPL now supports reading and writing YAML environment configurations. [PR #1250](google/cel-go#1250)

• Parse-Only Mode: Added parse-only evaluation capabilities to the REPL. [PR #1254](google/cel-go#1254)

• Test Coverage: Introduced logic for CEL test coverage calculation and updated the reporter to handle error/unknown scenarios.[PR #1209](google/cel-go#1209) & [PR #1215](google/cel-go#1215)

Core Library

• Regex Costing: Added support for cost estimation and tracking within the regex library. [PR #1200](google/cel-go#1200)

• JSON Type Exposure: Exposed CEL JSON types to assist developers in converting to native values. [PR #1261](google/cel-go#1261)

• Policy Composition: Source information is now preserved during CEL policy composition, aiding in debugging. [PR #1253](google/cel-go#1253)

Extensibility:

• Updated extension option factory to resolve by ID (#1249).

• Refactored match output compiling to accept user-defined logic (#1246).

• Exposed Match source ID to callers (#1227).

Build & Maintenance

• Bazel: Migrated to use Bazel module only and improved configuration for dependent builds. [PR #1231](google/cel-go#1231) & [PR #1228](google/cel-go#1228)

• Cleanup: Removed strcase dependency, removed AppEngine code from REPL, and performed general linting. [PR #1230](google/cel-go#1230), #1216, #1251

Bug Fixes

• Concurrency: Fixed a race condition in the checker regarding reference types. [PR #1224](google/cel-go#1224)

• Namespace Resolution: Addressed an issue with namespace resolution. [PR #1256](google/cel-go#1256)

• Spec Compliance: Fixed formatting directives to fully support requirements documented in the cel-spec. [PR #1232](google/cel-go#1232)

... (truncated)

Commits

• 450089b Preserve source information during CEL policy composition. (#1253)
• c66b313 Remove types as variables to allow user-defined variables to shadow type decl...
• bff3a72 Expose the CEL JSON types to assist with conversion to native values (#1261)
• 559cbc9 Remove errant diff checked into a prior PR (#1260)
• fe26efa Simplify the disambiguation logic to a single boolean (#1263)
• 52280ba Clean up unused source info after checker rewrites the AST. (#1258)
• 3cb5705 Namespace resolution fix (#1256)
• 409bcbe Refactor match output compiling to accept user-defined logic. (#1246)
• e9f15ea Enable two var comprehension conformance tests. (#1255)
• 057fa1a Add parse only evaluation to REPL (#1254)
• Additional commits viewable in compare view

Updates github.com/itchyny/gojq from 0.12.17 to 0.12.18

Release notes

Sourced from github.com/itchyny/gojq's releases.

Release v0.12.18

• implement trimstr/1, toboolean/0 function
• fix last/1 to be included in builtins/0
• fix --indent 0 to preserve newlines
• fix string repetition to emit error when the result is too large
• increase the array index limit to 536870912 (2^29)
• stop numeric normalization for concurrent execution (see 1ace748d08df)
• support binding expressions with binary operators (1 + 2 as $x | -$x)
• improve gojq.NewIter to be a generic function
• improve logic for getting file contents on JSON parse error
• improve JSON parsing to preserve the precision of floating-point numbers
• improve YAML parsing performance and preserve the precision of large integers
• improve performance and reduce memory allocation of long-running queries

Changelog

Sourced from github.com/itchyny/gojq's changelog.

v0.12.18 (2025-12-02)

• implement trimstr/1, toboolean/0 function
• fix last/1 to be included in builtins/0
• fix --indent 0 to preserve newlines
• fix string repetition to emit error when the result is too large
• increase the array index limit to 536870912 (2^29)
• stop numeric normalization for concurrent execution (see 1ace748d08df)
• support binding expressions with binary operators (1 + 2 as $x | -$x)
• improve gojq.NewIter to be a generic function
• improve logic for getting file contents on JSON parse error
• improve JSON parsing to preserve the precision of floating-point numbers
• improve YAML parsing performance and preserve the precision of large integers
• improve performance and reduce memory allocation of long-running queries

Commits

• fa534a1 bump up version to 0.12.18
• d7e1531 update CHANGELOG.md for v0.12.18
• 672cc79 update dependencies
• 2263e18 update actions/checkout to v6
• 5d8a53c add more tests for empty strings and NO_COLOR
• 97274d3 make use of cmp package for comparisons
• 3e31863 merge identical cases for getting operator functions
• e4d456b avoid variable names that shadow built-in functions
• 19a3975 stop replacing capturing group syntax
• 5bb6d33 support binding expressions with binary operators (fix #283)
• Additional commits viewable in compare view

Updates github.com/labstack/echo/v4 from 4.13.4 to 4.15.0

Release notes

Sourced from github.com/labstack/echo/v4's releases.

v4.15.0

Security

WARNING: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

• same-origin or none: Requests are allowed (exact origin match or direct user navigation)
• same-site: Falls back to token validation (e.g., subdomain to main domain)
• cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

• TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)
• AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:

e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))

PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

• Added generic functions for type-safe parameter extraction and context access by @​aldas in labstack/echo#2856

  Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion, eliminating manual string parsing and type assertions.

... (truncated)

Changelog

Sourced from github.com/labstack/echo/v4's changelog.

v4.15.0 - 2026-01-01

Security

NB: If your application relies on cross-origin or same-site (same subdomain) requests do not blindly push this version to production

The CSRF middleware now supports the Sec-Fetch-Site header as a modern, defense-in-depth approach to CSRF protection, implementing the OWASP-recommended Fetch Metadata API alongside the traditional token-based mechanism.

How it works:

Modern browsers automatically send the Sec-Fetch-Site header with all requests, indicating the relationship between the request origin and the target. The middleware uses this to make security decisions:

• same-origin or none: Requests are allowed (exact origin match or direct user navigation)
• same-site: Falls back to token validation (e.g., subdomain to main domain)
• cross-site: Blocked by default with 403 error for unsafe methods (POST, PUT, DELETE, PATCH)

For browsers that don't send this header (older browsers), the middleware seamlessly falls back to traditional token-based CSRF protection.

New Configuration Options:

• TrustedOrigins []string: Allowlist specific origins for cross-site requests (useful for OAuth callbacks, webhooks)
• AllowSecFetchSiteFunc func(echo.Context) (bool, error): Custom logic for same-site/cross-site request validation

Example:

e.Use(middleware.CSRFWithConfig(middleware.CSRFConfig{
    // Allow OAuth callbacks from trusted provider
    TrustedOrigins: []string{"https://oauth-provider.com"},
// Custom validation for same-site requests
AllowSecFetchSiteFunc: func(c echo.Context) (bool, error) {
    // Your custom authorization logic here
    return validateCustomAuth(c), nil
    // return true, err  // blocks request with error
    // return true, nil  // allows CSRF request through
    // return false, nil // falls back to legacy token logic
},

}))

PR: labstack/echo#2858

Type-Safe Generic Parameter Binding

• Added generic functions for type-safe parameter extraction and context access by @​aldas in labstack/echo#2856

  Echo now provides generic functions for extracting path, query, and form parameters with automatic type conversion,

... (truncated)

Commits

• 482bb46 v4.15.0 changelog
• d0f9d1e CRSF with Sec-Fetch-Site=same-site falls back to legacy token
• f3fc618 CRSF with Sec-Fetch-Site checks
• 4dcb9b4 licence headers
• cbc0ac1 Add PathParam(Or)/QueryParam(Or)/FormParam(Or) generic functions
• 6b14f4e Add Context.Get generic functions
• 321530d disable test - returns different error under Windows
• c8abd9f disable flaky test
• 9fe43f7 fix Rate limiter disallows fractional rates
• 1b5122a document things to reduce false positives
• Additional commits viewable in compare view

Updates github.com/mattn/go-sqlite3 from 1.14.30 to 1.14.33

Commits

• 3c885a9 Upgrade SQLite to version 3051001
• 3e773a9 update github workflows
• 2f6a2bb fix upgrade script
• aa7cdd3 update upgrade script
• a66908a use quote include instead of angled include for sqlite3-binding.h
• 8bf7a8a update amalgamation code
• 2e165e0 fix syntax error
• See full diff in compare view

Updates github.com/olekukonko/tablewriter from 1.1.0 to 1.1.3

Commits

• ce018e6 fix read me update version
• e3130fb Merge pull request #309 from olekukonko/narrow
• 975f050 update ll
• d4923d8 add more emoji & unicode test #308
• c8c2b21 separate tint
• 7097b13 Fix ForceNarrowBorders for generates long strings of border characters - Upda...
• d02c460 revert go mod to go 1.21 and update dependencies to avoid breaking changes
• dd95aca add clarity
• ca4e3ac clearer environment debugging information
• b31b038 use auto detection as default
• Additional commits viewable in compare view

Updates github.com/onsi/ginkgo/v2 from 2.26.0 to 2.28.1

Release notes

Sourced from github.com/onsi/ginkgo/v2's releases.

v2.28.1

2.28.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

v2.28.0

2.28.0

Ginkgo's SemVer filter now supports filtering multiple components by SemVer version:

It("should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)", SemVerConstraint(">= 3.2.0"), ComponentSemVerConstraint("redis", ">= 8.0.0") func() {
    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is >= 8.0.0
})

can be filtered in or out with an invocation like:

ginkgo --sem-ver-filter="2.1.1, redis=8.2.0"

Huge thanks to @​Icarus9913 for working on this!

v2.27.5

2.27.5

Fixes

Don't make a new formatter for each GinkgoT(); that's just silly and uses precious memory

v2.27.4

2.27.4

Fixes

• CurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]

v2.27.3

2.27.3

Fixes

report exit result in case of failure [1c9f356] fix data race [ece19c8]

v2.27.2

2.27.2

Fixes

• inline automaxprocs to simplify dependencies; this will be removed when Go 1.26 comes out [a69113a]

Maintenance

... (truncated)

Changelog

Sourced from github.com/onsi/ginkgo/v2's changelog.

2.28.1

Update all dependencies. This auto-updated the required version of Go to 1.24, consistent with the fact that Go 1.23 has been out of support for almost six months.

2.28.0

Ginkgo's SemVer filter now supports filtering multiple components by SemVer version:

It("should work in a specific version range (1.0.0, 2.0.0) and third-party dependency redis in [8.0.0, ~)", SemVerConstraint(">= 3.2.0"), ComponentSemVerConstraint("redis", ">= 8.0.0") func() {
    // This test will only run when version is between 1.0.0 (exclusive) and 2.0.0 (exclusive) and redis version is >= 8.0.0
})

can be filtered in or out with an invocation like:

ginkgo --sem-ver-filter="2.1.1, redis=8.2.0"

Huge thanks to @​Icarus9913 for working on this!

2.27.5

Fixes

Don't make a new formatter for each GinkgoT(); that's just silly and uses precious memory

2.27.4

Fixes

• CurrentTreeConstructionNodeReport: fix for nested container nodes [59bc751]

2.27.3

Fixes

report exit result in case of failure [1c9f356] fix data race [ece19c8]

2.27.2

Fixes

• inline automaxprocs to simplify dependencies; this will be removed when Go 1.26 comes out [a69113a]

Maintenance

• Fix syntax errors and typo [a99c6e0]
• Fix paragraph position error [f993df5]

2.27.1

Fixes

... (truncated)

Commits

• 5d1d628 v2.28.1
• 676f985 update test mu language
• 8032100 appease go vet
• 41ca807 bump dependencies
• 2b2305b v2.28.0
• 71d2d89 feat: support component semantic version filtering
• 8cbbcb4 Fix doclink for ginkgo run
• a928307 v2.27.5
• 0d0e96d don't make a new formatter for each GinkgoT(); that's just silly and uses pre...
• 867ce95 v2.27.4
• Additional commits viewable in compare view

Updates github.com/onsi/gomega from 1.38.2 to 1.39.0

Release notes

Sourced from github.com/onsi/gomega's releases.

v1.39.0

1.39.0

Features

Add MatchErrorStrictly which only passes if errors.Is(actual, expected) returns true. MatchError, by contrast, will fallback to string comparison.

v1.38.3

1.38.3

Fixes

make string formatitng more consistent for users who use format.Object directly

Changelog

Sourced from github.com/onsi/gomega's changelog.

1.39.0

Features

Add MatchErrorStrictly which only passes if errors.Is(actual, expected) returns true. MatchError, by contrast, will fallback to string comparison.

1.38.3

Fixes

make string formatitng more consistent for users who use format.Object directly

Commits

• 49561ad v1.39.0
• 8f7f425 document MatchErrorStrictly
• bae643d add matcher relecting errors.Is behavior
• a3ca2ca v1.38.3
• 4dada36 fix failing have http tests
• d40c691 make string formatitng more consistent for users who use format.Object directly
• 2a37b46 doc: fix typos
• ee26170 docs: fix HaveValue example
• cc85c05 Bump actions/setup-go from 5 to 6 (#866)
• 8905788 Bump github.com/onsi/ginkgo/v2 from 2.25.1 to 2.25.3 (#865)
• Additional commits viewable in compare view

Updates github.com/playwright-community/playwright-go from 0.4702.0 to 0.5200.1

Release notesDescription has been truncated

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

• 🔍 Trigger a full review

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}