Skip to content

chore(deps): bump the prod-patch-updates group across 1 directory with 2 updates#356

Open
dependabot[bot] wants to merge 2 commits into
mainfrom
dependabot/go_modules/prod-patch-updates-d9ad24fc58
Open

chore(deps): bump the prod-patch-updates group across 1 directory with 2 updates#356
dependabot[bot] wants to merge 2 commits into
mainfrom
dependabot/go_modules/prod-patch-updates-d9ad24fc58

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 15, 2026
edited
Loading

Bumps the prod-patch-updates group with 2 updates in the / directory: google.golang.org/grpc and software.sslmate.com/src/go-pkcs12.

Updates google.golang.org/grpc from 1.81.0 to 1.81.1

Release notes

Sourced from google.golang.org/grpc's releases.

Release 1.81.1

Security

  • xds/rbac: Fix a potential authorization bypass caused by incorrectly falling through URI/DNS SANs to Subject Distinguished Name (DN) when matching the authenticated principal name. With this fix, only the first non-empty identity source will be used, as per gRFC A41. (#9111)

Bug Fixes

  • otel: Segregate client and server RPC information used for metrics and traces, to avoid one overwriting the other. (#9081)
Commits

Updates software.sslmate.com/src/go-pkcs12 from 0.7.0 to 0.7.1

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels May 15, 2026
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file go Pull requests that update go code labels May 15, 2026
@dependabot dependabot Bot force-pushed the dependabot/go_modules/prod-patch-updates-d9ad24fc58 branch from 20addb7 to 1defbf0 Compare May 17, 2026 04:13
@dependabot
chore(deps): bump the prod-patch-updates group across 1 directory wit…
9c95ff5 
…h 2 updates

Bumps the prod-patch-updates group with 2 updates in the / directory: [google.golang.org/grpc](https://github.com/grpc/grpc-go) and software.sslmate.com/src/go-pkcs12.


Updates `google.golang.org/grpc` from 1.81.0 to 1.81.1
- [Release notes](https://github.com/grpc/grpc-go/releases)
- [Commits](grpc/grpc-go@v1.81.0...v1.81.1)

Updates `software.sslmate.com/src/go-pkcs12` from 0.7.0 to 0.7.1

---
updated-dependencies:
- dependency-name: google.golang.org/grpc
  dependency-version: 1.81.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-patch-updates
- dependency-name: software.sslmate.com/src/go-pkcs12
  dependency-version: 0.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: prod-patch-updates
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/go_modules/prod-patch-updates-d9ad24fc58 branch from deb5997 to 9c95ff5 Compare May 21, 2026 10:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@oschwartz10612 oschwartz10612 Awaiting requested review from oschwartz10612 oschwartz10612 is a code owner

@miloschwartz miloschwartz Awaiting requested review from miloschwartz miloschwartz is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file go Pull requests that update go code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants