Dependency Dashboard

[renovate]

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
View this repository on the Mend.io Web Portal.

Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

• fix(deps): update module golang.org/x/tools to v0.41.0

Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

• fix(deps): update module go.uber.org/zap to v1.27.1
• fix(deps): update module golang.org/x/vuln to v1.1.4
• chore(deps): update dependency go to v1.25.6
• chore(deps): update github-actions deps (actions/upload-artifact, github/codeql-action, go, ossf/scorecard-action)
• fix(deps): update module github.com/golangci/golangci-lint to v1.64.8
• fix(deps): update module github.com/goreleaser/goreleaser/v2 to v2.13.3
• fix(deps): update module github.com/securego/gosec/v2 to v2.22.11
• fix(deps): update module honnef.co/go/tools to v0.6.1
• chore(deps): update github-actions deps (major) (actions/checkout, actions/labeler, actions/setup-go, actions/upload-artifact, amannn/action-semantic-pull-request, codecov/codecov-action, github/codeql-action)
• fix(deps): update module github.com/golangci/golangci-lint to v2
• Click on this checkbox to rebase all open PRs at once

Detected Dependencies

github-actions (5)

.github/workflows/build.yml (11)

• actions/checkout v4 → [Updates: v6]
• actions/setup-go v5 → [Updates: v6]
• actions/checkout v4 → [Updates: v6]
• actions/setup-go v5 → [Updates: v6]
• docker/setup-qemu-action v3
• docker/setup-buildx-action v3
• goreleaser/goreleaser-action v6
• actions/checkout v4 → [Updates: v6]
• actions/setup-go v5 → [Updates: v6]
• codecov/codecov-action v4 → [Updates: v5]
• go-semantic-release/action v1

.github/workflows/pr_conventional.yml (1)

• amannn/action-semantic-pull-request v5 → [Updates: v6]

.github/workflows/pr_labeler.yml (1)

• actions/labeler v5 → [Updates: v6]

.github/workflows/release.yml (7)

• actions/checkout v4 → [Updates: v6]
• docker/login-action v3
• actions/setup-go v5 → [Updates: v6]
• docker/setup-qemu-action v3
• docker/setup-buildx-action v3
• goreleaser/goreleaser-action v6
• go 1.22 → [Updates: 1.25]

.github/workflows/scorecard.yml (4)

• actions/checkout v4 → [Updates: v6]
• ossf/scorecard-action v2.3.3@dc50aa9510b46c811795eb24b2f1ba02a914e534 → [Updates: v2.4.3]
• actions/upload-artifact v4.3.3@65462800fd760344b1a7b4382951275a0abb4808 → [Updates: v4.6.2, v6.0.0]
• github/codeql-action v3.25.10@23acc5c183826b7a8a97bce3cecc52db901f8251 → [Updates: v3.31.11, v4.31.11]

gomod (2)

go.mod (2)

• go 1.22.4
• go.uber.org/zap v1.27.0 → [Updates: v1.27.1]

internal/tools/go.mod (8)

• go 1.22
• go 1.22.4 → [Updates: 1.25.6]
• github.com/golangci/golangci-lint v1.59.1 → [Updates: v1.64.8, v2.8.0]
• github.com/goreleaser/goreleaser/v2 v2.0.1 → [Updates: v2.13.3]
• github.com/securego/gosec/v2 v2.20.1-0.20240625111827-9a4a741e6b37@9a4a741e6b37 → [Updates: v2.22.11]
• golang.org/x/tools v0.22.0 → [Updates: v0.41.0]
• golang.org/x/vuln v1.1.2 → [Updates: v1.1.4]
• honnef.co/go/tools v0.4.7 → [Updates: v0.6.1]

---

• Check this box to trigger a request for Renovate to run again on this repository