Skip to content

Bump securego/gosec from 2.22.0 to 2.22.5 #26

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump securego/gosec from 2.22.0 to 2.22.5 #26

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 16, 2025

Bumps securego/gosec from 2.22.0 to 2.22.5.

Release notes

Sourced from securego/gosec's releases.

v2.22.5

Changelog

  • d2d3ae66bd8d340b78b5142b6fe610691783c2fe Switch back go.mod to minimum 1.23.0
  • 1e7ed06b152a8a835f64c0c2a0f4ef7b83434ae8 Update dependencies
  • 1bef91a07f24a9853461be9d3f13df7ee0dfc44c Update go version 1.24.4 and 1.23.10 in CI
  • 621702f13a80eed1b8e60d1fa35b128d622832cb chore(deps): update all dependencies
  • 017d1d655c299165954ba3c6d99bdb86319ecb6a G201/G202: add checks for injection into sql.Conn methods
  • 67f63d47819d2766119d7f5df1cc898e6d985516 chore(deps): update module google.golang.org/api to v0.235.0
  • b4eabb1b18f22ef42f267d416701e57e82394e14 chore(deps): update module google.golang.org/api to v0.234.0
  • 52a80ff4bdb2e571227a1cfaab461a430e0d8800 chore(deps): update module google.golang.org/api to v0.233.0
  • e2a95069d97743102fc5988eef8bd1a118c9b79c chore(deps): update module google.golang.org/api to v0.232.0

v2.22.4

Changelog

  • 6decf96c3d272d5a8bbdcf9fddb5789d0be16a8d Update to go version 1.24.3 and 1.23.9
  • d522338364ccd4e90c00dedc1c7c73f99f1ce20d update: updated the build command to include version metadata
  • 270b5ce8680a9b04afb94d7b5f2b32b9675e379a chore(deps): update all dependencies
  • 60279264beb3f4ca2b288d39b84e930747009a8f Update the AI provider API key value when provided as an argument
  • 65d2d9f011ac529754f847977812a1c64fdab7ea chore(deps): update module google.golang.org/api to v0.230.0
  • dc1c38b861a6780559cbd51fb9585da7863d0cc5 chore(deps): update module google.golang.org/api to v0.229.0
  • 55dbf5ad81fd416ebe540f79e236d1b76dec9164 chore(deps): update all dependencies
  • 2aaa9c41d6671d0ce7c778cc10340c4fd62d164b Comment the reason why the file can be nil when an issue is created
  • 700e9a9d180e449887f89d03681e4f8225da430a Handle nil file when creating a new issue
  • d514c426711896adf8a1dffb09037c3ac8752b05 chore(deps): update all dependencies (#1333)
  • 1d458c50e1a9aa6c0d414dfde3998d66cf2c4fc7 Update version in 'action.yml' to 2.22.3 (anticipating next version (#1332)

v2.22.3

Changelog

  • 955a68d0d19f4afb7503068f95059f7d0c529017 Update go version to 1.24.2 and 1.23.8 (#1331)
  • 1336dc682085ec9d6b4d40fda0e4598e156bef5c remove G113. It only affects old/unsupported versions of Go (#1328)
  • 5fd2a370447223541cddb35da8d1bc707b7bb153 chore(deps): update all dependencies (#1325)
  • 39e44777884117b67b8fd57dd75bb62c96ca92b7 Add SSOJet (#1320)
  • 6141d100df940efbada15a19204565c3e85fda63 chore(deps): update all dependencies (#1319)
  • 9452efe4ad770f703df825fb32cd693b421fc916 Update the integrity sha for babel dependency in html report (#1316)
  • 57ec63392cac020f01f555654da58918b71fdd2d Add support for //gosec:disable directive (#1314)
  • e5fee17863ee626a6d3335bb13df3f620352ddf8 chore(deps): update all dependencies (#1315)

v2.22.2

Changelog

  • 136f6c00402b11775d4f4a45d5a21e2f6dd99db2 Update to go version 1.24.1 and 1.23.7 (#1313)
  • 047453a82f5e8e5d55730f8108582c32943b04ea chore(deps): update all dependencies (#1310)
  • 76ccee5b2f4f8fb99c34e156717967b7e57d160d chore(deps): update all dependencies (#1308)
  • a9eb1c96fae2533bee92dc08d311cd36d4ec2493 Update gosec version in the GitHub action to v2.22.1 (#1307)
  • 89c5da3ce07d6df76c067f331f2fcfdb6b30c736 chore(deps): update module google.golang.org/api to v0.221.0 (#1305)

v2.22.1

Changelog

  • 43fee884f668c23601e0bec7a8c095fba226f889 Update cosign to v2.4.2 (#1303)
  • 77238291df6682591938942acd2b330229ab307d Add support for go 1.24 and phased out support for go 1.22 (#1302)
  • 9552f0372db9a3c730adae2328f542e5a6bd82e5 chore(deps): update all dependencies (#1300)

... (truncated)

Commits
  • d2d3ae6 Switch back go.mod to minimum 1.23.0
  • 1e7ed06 Update dependencies
  • 1bef91a Update go version 1.24.4 and 1.23.10 in CI
  • 621702f chore(deps): update all dependencies
  • 017d1d6 G201/G202: add checks for injection into sql.Conn methods
  • 67f63d4 chore(deps): update module google.golang.org/api to v0.235.0
  • b4eabb1 chore(deps): update module google.golang.org/api to v0.234.0
  • 52a80ff chore(deps): update module google.golang.org/api to v0.233.0
  • e2a9506 chore(deps): update module google.golang.org/api to v0.232.0
  • 6decf96 Update to go version 1.24.3 and 1.23.9
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump securego/gosec from 2.22.0 to 2.22.5
b915c50 
Bumps [securego/gosec](https://github.com/securego/gosec) from 2.22.0 to 2.22.5.
- [Release notes](https://github.com/securego/gosec/releases)
- [Changelog](https://github.com/securego/gosec/blob/master/.goreleaser.yml)
- [Commits](securego/gosec@e0cca6f...d2d3ae6)

---
updated-dependencies:
- dependency-name: securego/gosec
  dependency-version: 2.22.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code labels Jun 16, 2025
@dependabot dependabot bot mentioned this pull request Jun 16, 2025
Closed
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jul 21, 2025

Superseded by #33.

@dependabot dependabot bot closed this Jul 21, 2025
@dependabot dependabot bot deleted the dependabot/github_actions/securego/gosec-2.22.5 branch July 21, 2025 23:12
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants