Bump golang.org/x/mod from 0.34.0 to 0.37.0#99
Conversation
Bumps [golang.org/x/mod](https://github.com/golang/mod) from 0.34.0 to 0.37.0. - [Commits](golang/mod@v0.34.0...v0.37.0) --- updated-dependencies: - dependency-name: golang.org/x/mod dependency-version: 0.37.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
|
Review the following changes in direct dependencies. Learn more about Socket for GitHub.
|
|
Warning Review the following alerts detected in dependencies. According to your organization's Security Policy, it is recommended to resolve "Warn" alerts. Learn more about Socket for GitHub.
|
Coverage provided by https://github.com/seriousben/go-patch-cover-action |
|
Looks like golang.org/x/mod is up-to-date now, so this is no longer needed. |
Bumps golang.org/x/mod from 0.34.0 to 0.37.0.
Commits
deb1dfcgo.mod: update golang.org/x dependencies087f651modfile: use slices.Backward343ee60x/mod: allow for aggressively conslidating requires643da9bgo.mod: update golang.org/x dependenciesccc3cdfzip: include 'but content has correct sum' note in TestVCSab30318zip: update zip hashes for new flate compression03901d3go.mod: update golang.org/x dependenciesDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)